Overview

overview

3

Static

static

3

640547fcff...3b.pdf

windows7-x64

1

640547fcff...3b.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    18-01-2024 00:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    640547fcffd0590ad8d734650827583b.pdf

  • Size

    38KB

  • MD5

    640547fcffd0590ad8d734650827583b

  • SHA1

    55c0f9f91b5a435df97d536b7d9d3a6c462c7082

  • SHA256

    966860415bf766c75dc274a4b74f07fd0ae5ca9907168816245692d852ab2d46

  • SHA512

    58b89d268468f8629afd2e41cdfc4993b59f174365d07f4227118f97da439ffaca8107582db097bbc366526d241d94c24dd1f8c3ed5c8f48891e3aa3c04d800d

  • SSDEEP

    768:9IDy45YDkojajCHo2weH4e1xtp3SXcNlmfRLw2si6UUjmfOEP+Tg+:+W8nzCHjYePlmfRLw+6UUjmmDM+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\640547fcffd0590ad8d734650827583b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1232

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ade41ab7a9ce95b731cd01b1d0ee6a14

    SHA1

    a1e1b1894f7261e44e757daf2fa96fbe054866be

    SHA256

    9d54836d0bcc860929c77c24e316d87c777bb890cbe10fec3a4148d6f77213d7

    SHA512

    761bd99c58ca72e915ec3a6afd03ad16c346a491c58dac362e61b44b8082a0e33c64d4c2ac4ef05d0ff6c0892cb0b5fda92f91770c2fe3e264899c08abd46b69

    Download Submit