Overview

overview

3

Static

static

3

4fa59ba969...a3.pdf

windows7-x64

1

4fa59ba969...a3.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    10/01/2024, 04:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4fa59ba969d2104773d4d1d448aad2a3.pdf

  • Size

    42KB

  • MD5

    4fa59ba969d2104773d4d1d448aad2a3

  • SHA1

    7ced3f5089468b97417945d7204ae497f4ab36bf

  • SHA256

    87c3da67c7577176c09373ca0d403f54ab4a03fdc2fdc02b534de315ab774565

  • SHA512

    f7dc39245a19009832d07a65cf88845a8a5c9fe2c84c5222aad60de4e5cdc1534d2cbb10fe3b145b98bb5298762b464d1c9b27ff383bccc98c876b2aab7ff199

  • SSDEEP

    768:J2C+ypQS+pMdA/Tn1etdar5MDp2/YFOtR/Ri2mZQmOLXc79+xhqowS4PR6hPwakL:J2v5NpMWrnP9EEtDinqmOLzqop3hPve1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4fa59ba969d2104773d4d1d448aad2a3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2184

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    465bee1bfa14c41a0e272a216dc2c6fc

    SHA1

    a081374c854cdc5ee2876cadc8f226830c8106fe

    SHA256

    e82ff649d881d3921b0eef068bca475ba3eeac1c4aa32689a047541bf97da86b

    SHA512

    958ffe93b426eb4dd1326a82855074c1ff3f040095f2f44d39788982eb3053dd556fcb470210015c6ea53032b699c865b231adc48323ca6670191c6088d0438d

    Download Submit