Overview

overview

6

Static

static

6

4f2850fa75...cd.pdf

windows7-x64

1

4f2850fa75...cd.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    10-01-2024 00:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4f2850fa7563ebd66ebfcb43d8ca05cd.pdf

  • Size

    42KB

  • MD5

    4f2850fa7563ebd66ebfcb43d8ca05cd

  • SHA1

    875fe870a1a6ad354c0e2d483dc92fcbb8d91b57

  • SHA256

    f0b62148859b14cee736551c3e903be12ce1e080969bd88187aeb60599b087c9

  • SHA512

    f0ebf32d9ed0701db80260b2d875ae0c4cb6f3be859c2284f1e3e883bb6c4d3822263af5c2c8f8f10cd16a3710248afee841d7e4b8a0703fb97373a6dd8179f4

  • SSDEEP

    768:hhEWB23koZEuYxkGs4y+A5WdRCe/luFwyG6UnSINuI0cQt3oUR98dyVFvp+:hTg3kbKo4gRCe4F9eSPI0hLVu

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4f2850fa7563ebd66ebfcb43d8ca05cd.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2620

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5e40d14663add983a74bf27ce2c9bbe8

    SHA1

    61f16242984f3fbf0f8b183752770cf734b354d6

    SHA256

    5806af4c5365527c9c44927b8274590eaed9cc1e4d8a7396dfd0cf8b4ee54da4

    SHA512

    61c047c7ba9c7a26305ce627f548dedd222469a690cca0b87871fa1c9e25605f489cbb73d69f46758d191b91e425169d006e622ec591b213d110fca777881b52

    Download Submit