Overview

overview

3

Static

static

3

66e40d6a8a...cb.pdf

windows7-x64

1

66e40d6a8a...cb.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19-01-2024 06:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    66e40d6a8a0e4de24907bc6852c1d8cb.pdf

  • Size

    42KB

  • MD5

    66e40d6a8a0e4de24907bc6852c1d8cb

  • SHA1

    8d0938fd4ecf05cfbdbb6d2d15a34c25e9305803

  • SHA256

    24266387408c804103407675528892d3e977acce33ba1a370b33d84b8d652f5a

  • SHA512

    c6f071fec8d53ea62f4476cc6cd428b893b9bc5cc82a9db7f5498ce2292f4dde9121e114b67bdd5004d4d0a9825dc85236db579c12b111c99da3612e167805f8

  • SSDEEP

    768:rb/Xd7S9X3xpZ3Fo1sDhRBo9fLfi3n0sEiqXdkuQYz+MEnUXVAkPn3hQGrEZ/v:rLX89X3xpZFo1p9zfKWXtuneV7Pn3h3+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\66e40d6a8a0e4de24907bc6852c1d8cb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2312

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8250caf6ce8717b14a450898c89a6af9

    SHA1

    e43824797228bc12da1599f2c00151cd1e15385f

    SHA256

    610b1ed1166ce9f360e293be485dc8be4bb1b9a9cd8faed91618b10755775096

    SHA512

    1a61ba98a4c8dbd4b76c116f8ae8e563d1570730dace085b951c1d4924829e1807a44f9987628406dd83138692ed20b1b547f4d8b5fed72ab5fdcd74fed64c7c

    Download Submit