Overview

overview

3

Static

static

3

55442b8157...3a.pdf

windows7-x64

1

55442b8157...3a.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    12-01-2024 02:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    55442b8157a8a5bdaf06d3e237f13e3a.pdf

  • Size

    48KB

  • MD5

    55442b8157a8a5bdaf06d3e237f13e3a

  • SHA1

    d0ebfc1b9a309d55b79b0b2d9ba0630b8a99f297

  • SHA256

    782f46d6f0f0c6ec5881a3f48cb61f48896ef043ebf24c0aa6b4dbac0c7f02b2

  • SHA512

    2d749863963b0015695c3845f9fecb02962b3ac1eee2824343c7df45c5c6245ec4aa0bfa9c0f2c1283926a4aab4f21723360aa6df9c75695dc9bb6fc4642121b

  • SSDEEP

    768:10B/J5JK5qwxD8ZO/AvGiewhhDH2oT6fi8de4WjZSPEwmhGJ0pRmbjtVPPq/XMQn:yBnATQ9RUMthG+pRE3PiMtFbrp4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\55442b8157a8a5bdaf06d3e237f13e3a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2820

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    bb71af52a0a2ed3c79559f4646f7aa36

    SHA1

    fbaee0ba50b4bdb7880a86e9a38a9c1933cbaca0

    SHA256

    beade1a68b048657ec8f33da6a65d474b7ca8dcc2c6f813e1647d6508a726e3c

    SHA512

    36774e2839d704c0379cacc4f942b915aa2d5e6bba78b08a4fcce52df53a2789e35fb80e6dffbc62ece24185417c8b7570d05e4151174b2e61ea6bc2fefcfec7

    Download Submit