Overview

overview

3

Static

static

3

484df6b5fe...70.pdf

windows7-x64

1

484df6b5fe...70.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    07/01/2024, 06:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    484df6b5fe797ab5582f36afb6525470.pdf

  • Size

    88KB

  • MD5

    484df6b5fe797ab5582f36afb6525470

  • SHA1

    9c061f2853989d809e9ac4928598a780c1227e2c

  • SHA256

    a2000c6461c51778b1cf60d93e7d54b3bae93dffa5214031dda19fbd1af6277c

  • SHA512

    ebd92d41678800a2e7a2c4e6f038a4c289e1c92e7cb110f4648dbd3e3c40d8d7e8f7027de6bf6ebd9feedd9212f86704d4e23a646a09f6ba2232ed9be503bd4a

  • SSDEEP

    1536:Ze3efTOiTW+j6rjdmcPXBH5aQ7S4iEb8Ikl3rCi7cKei/su481Eb4IWspORGWh4z:c3e6iTW10cPXBZaQ5iag3rCi9ei/sun6

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\484df6b5fe797ab5582f36afb6525470.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1456

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a717603d1a001a958c1a92ce106fb0f3

    SHA1

    33b5e90dd8225b958fee195aac26480333422282

    SHA256

    7994bb8df0c59033b997e5b1bcecc4aaf185ce267c8d63b856f5812ec32d26f1

    SHA512

    da4761e3f554aef3c468c59a1e4a45f4762d63a7f6ed244b873139d2bfd87668cc3b8c456b6eec4350ee4e96773465fad3f276dba5a0eac7aea36f5a0120124c

    Download Submit