Overview

overview

3

Static

static

3

4f48046442...19.pdf

windows7-x64

1

4f48046442...19.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    10/01/2024, 01:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4f48046442d3101d6458798eab7bbf19.pdf

  • Size

    70KB

  • MD5

    4f48046442d3101d6458798eab7bbf19

  • SHA1

    d98d80a10f7999f034b879a18add52a505d73fb6

  • SHA256

    dcd95c14c5eefdf6da962fb3e33f9a1992ffa63477f112396f975002bab6b93d

  • SHA512

    ae4dea283c39924e551647678d1e30650b7a84f8ffa829449a5ee0ccd8450002f62bf35d3f55751a700f93d433030d482812c0d3ffb57e6c382b4c20fc2c64ad

  • SSDEEP

    1536:azndrwYAKZfNkdmuQHan9jybKdiMJ8rjKE4dxAF4HopGm:Kds+ZAJQEcoiHKECCTp

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4f48046442d3101d6458798eab7bbf19.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2128

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    caa7bed37711a48c1084a37891c30a1f

    SHA1

    ddb6beb40e7369c5565b14b2c1cebce484f86316

    SHA256

    0d1561bac2c54df10f62b498d6212c005b32eb44bd3df0b9cbed58151cec7775

    SHA512

    0b98f81db75f8eb955cc5c17a0d811502d10e19f0b7b36668521cfbf419004c24cc9281e88e1aecb789bc526d9dca065286a40edd65e2385929ffddfab7fb726

    Download Submit