Overview

overview

3

Static

static

3

49bc92c189...11.pdf

windows7-x64

1

49bc92c189...11.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    07-01-2024 20:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    49bc92c189e89ee5e159a086a249a411.pdf

  • Size

    79KB

  • MD5

    49bc92c189e89ee5e159a086a249a411

  • SHA1

    5ebc82cc36e35d4f9e320a7bfd7fda790be17208

  • SHA256

    f63a12dd1388d058570aece2c9c22de592fba50684902905b96d4d9d58ecf8f6

  • SHA512

    a33783956c9b5029c04a3116da896729032725e0d231606f9e4bf0c6b6ae47c3e921401545bfa363ec06bfd2b8d3fc4fecc81ce2858b0a9c5ea250868bc385e7

  • SSDEEP

    1536:L5apk62HEm22gpLHRWsICiRyyhT1C50bv0D3gCIkOoaBGIkjsWNnwC1rkmjHWkpD:opl2km22gtwmWhfD0DwCIkOoDIkj5ltp

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\49bc92c189e89ee5e159a086a249a411.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2288

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    39282a708fce109aca1ebb7e17dda2e3

    SHA1

    be7c99cbb579f544b03ae60e603610079590742c

    SHA256

    d6fcd667e4763fc4a84eb270e31bcb647c5bafdaa691ec02e57f0194241d6606

    SHA512

    a39c46640c85adb3995cd9251588243a84f3b407709c402729d9d0394cd6f06d49c61cba3f4b5406f2f999a3b87e6c98e2f6302698d1b25f39ccecd0d2a896d0

    Download Submit