Overview

overview

3

Static

static

3

582ed7309a...aa.pdf

windows7-x64

1

582ed7309a...aa.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    13-01-2024 06:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    582ed7309a2c4149ca47a3116e7056aa.pdf

  • Size

    34KB

  • MD5

    582ed7309a2c4149ca47a3116e7056aa

  • SHA1

    c4982a59704e241e16a39ccc7ea7447c5c213cec

  • SHA256

    bfbaf05f0fe4efc6b34e5014ae12c4b8aa0bc32e460177f3cd680c13bf714d49

  • SHA512

    39ec587039fc28567c5e27c4a0a6d0b5e5a2980d71c3d6697494ca729a51743946a6f3a289f1ce06538fea436a830e42d47bc1e362298b148a5b7277049a9a95

  • SSDEEP

    384:sktkpcqwHHqHeSE2ZfsmaAzOVZ3Tel7kDX3i3nDQCUS0w23z647FwHK9PwSLUB+Q:1kqqcEXZfsv1Z3TGuC3Ujbp9TAkQ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\582ed7309a2c4149ca47a3116e7056aa.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2408

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9e39c0a2723ca58d3c3171ce0452377d

    SHA1

    743a08e7e28a45e1cef6d64b64644f09566c8c27

    SHA256

    80b4957ec4180c65534bc1244b7ee9c99805fd4d8a4028c2c45ed2afb1acb53a

    SHA512

    f071f12f50a1022826bdf6427781914b7ec317475bc85eb84ca5fd3b471c6bdb1d8d6db742a62f0e0c7798c22962f68337007919b455f14eb70acc9e4d5d1b8e

    Download Submit