Overview

overview

3

Static

static

3

5a04525890...81.pdf

windows7-x64

1

5a04525890...81.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    14-01-2024 02:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5a0452589078e0e4fbba219a2cd6ed81.pdf

  • Size

    74KB

  • MD5

    5a0452589078e0e4fbba219a2cd6ed81

  • SHA1

    d3d3bd8ba547884dcd102a7aadae1aa53c046d2b

  • SHA256

    e1592737547850b6ae16ea2fa3beb3a916b3a9280078866e1b69ad9d82d86e77

  • SHA512

    09d84ebd34c339f2fde66d8091352dc3b42ac6922892d7e665c53a1c8615864abea6881c291b0269a349b787e0cfa9bc1eb1e11985a3cfde445f284b9fbacb03

  • SSDEEP

    1536:OOtuKfKIZ+Z8T04nkWOw8HOZCULrWHpOvGAc8o6Wlzyb92ZN7E:RSIoZ8kG8HOZCg5vFBofDq

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5a0452589078e0e4fbba219a2cd6ed81.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2372

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c3184864a47ae829c85366e3d6313093

    SHA1

    5a570358582ea3c45f486051afeb4a25c6f78fa4

    SHA256

    633933a955d98bed2e61da5a90296eed9baa206259f8d5e83f625399709db77e

    SHA512

    69f8be2090a135fa6551a9f2f043ff51c8c7631c2bb6e11806db981dfed5352b5d4139f95f001f9c271b8763c85d0917392456889d9ad46bb98e9de57ae2bba8

    Download Submit