Overview

overview

3

Static

static

3

65ef680d1f...0f.pdf

windows7-x64

1

65ef680d1f...0f.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    18-01-2024 20:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    65ef680d1f4f3b76eb17d7f3a03a9d0f.pdf

  • Size

    80KB

  • MD5

    65ef680d1f4f3b76eb17d7f3a03a9d0f

  • SHA1

    14839794fc061d20d43005a20b1c50079e1e3d72

  • SHA256

    41a19fd90723f8d2d9b8e19c192e6d3e11afa9c1c6eb8a27e7816dc060977322

  • SHA512

    81cc81a31eb85809510fc210653ef4e066829d05b3d59dc38ac223f0bc7fb405df590dfe9d20f586bcad03e7799ed1e17e38cf764d66dc4403e0900906080f6c

  • SSDEEP

    1536:Jl2GydSuexXL1ZLvIMLUKLy3AyQWowex50rWHpOvnNn/aWhHCLTGyFfwD:KGydjetfATwyQZwe50vNn//HCL6cM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\65ef680d1f4f3b76eb17d7f3a03a9d0f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2324

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    234bc27a694886972830fe2491a25c51

    SHA1

    fba895374a73e0f1d75343fed6fd1e923d4b256a

    SHA256

    dbde771dd9eeb0e6a352769dc4eb9edba3dfbf9fbe12f0ec89736611a6e03d16

    SHA512

    1ce6c33f0debc9a27e31af67411cf321e1f65c8062bdcba7dcf403e2e8f88dda6d5c743b7da85bfee87902af07eb2c9e9b711e37c0a2068fcdd10ebfbd214695

    Download Submit