Overview

overview

3

Static

static

3

49e10c0dd6...84.pdf

windows7-x64

1

49e10c0dd6...84.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    07/01/2024, 21:59 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    49e10c0dd62a9cb95eab40dac9188484.pdf

  • Size

    95KB

  • MD5

    49e10c0dd62a9cb95eab40dac9188484

  • SHA1

    879bc0ed9e5fb95bb45fc713fb9fa4409b0e2f39

  • SHA256

    0c9456b21773628d28c0723602e83dcf34a40fac654a4c9bbe99ab7913a4c398

  • SHA512

    e6d89f25e2d0e48655b9cc1db7fb359c4ed1ade7212b9d0d6e262280bdc925f855e60ba6a283a1670229151b936aa9c15c3fd95a4ca92e3fd1e7066047b268f6

  • SSDEEP

    1536:3ctn+HtxxkerG04OakvK/kOstUzNc0J3exRCGkb5pOo9HIqIneB7kGzxDqpnucVD:st+zvbwkal9c0NeGtb5pLHMnIIGIF/sY

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\49e10c0dd62a9cb95eab40dac9188484.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1520

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a81887e0642d46b5acb5221f1b80d4cd

    SHA1

    c4d343cd9024184c23e24ae599cfa07b8fcbb9b5

    SHA256

    846fa5e07bee829ac8824138cb9ba1aa8537aa9ec00db8b181a441d17c9e5ae8

    SHA512

    7baabb504f5bf3abb5b8ce69c6678da5b28c394016936e96d88fbf91e44978dfe7d1a0c10ca4d6ea793db278d8e35b3c4a03707ba65d9e29233243d87b844404

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.