Overview

overview

3

Static

static

3

4978b381d9...5c.pdf

windows7-x64

1

4978b381d9...5c.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    07-01-2024 16:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4978b381d92f125526c65a186afadf5c.pdf

  • Size

    33KB

  • MD5

    4978b381d92f125526c65a186afadf5c

  • SHA1

    a8b2f80dcb64f9bbcd289caf1bc7e5029f7c726b

  • SHA256

    d7fa84fba374f6e04196b890f2b674bb50ca5f2aae76f544cadaefebe578a1e0

  • SHA512

    1744c66580651bb90e0d49fbfcef2671f99a78e33c562693ba29712df0e9912302b6cf6223e15e05a39c54e1052d9f3e7b16492880dbcbd013439a496828ee77

  • SSDEEP

    768:YAptVG5eJVFj1KsbrET6qbuTzar2p4vfy5emCLDIljsuL2:Y2A09j1kBuTza6p4XmXCLDcguL2

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4978b381d92f125526c65a186afadf5c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1208

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7c8bd5f5b0c2bb81b7dfcd0fb88daf46

    SHA1

    58170ce0c5b61db4ce6d635cf01c34997300aa4f

    SHA256

    d03a0b52008c441792d0d9ff1d4e6ac83a3154de12e2adfe10c1806c99db530e

    SHA512

    35a28e12b15a8c2a0a9a0ec14b8a147a2d60d721e54d66e8db9d5378e3a8c0c193716462a503d77458334a8b7e24134dc737e3c68e9387524c490331271465af

    Download Submit