Overview

overview

3

Static

static

3

676b12ee20...d3.pdf

windows7-x64

1

676b12ee20...d3.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/01/2024, 10:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    676b12ee2041f20bc3fbe05f266c94d3.pdf

  • Size

    95KB

  • MD5

    676b12ee2041f20bc3fbe05f266c94d3

  • SHA1

    263af8afb769016f3b403087d14acac6bd0e878a

  • SHA256

    a7cd865fafa62eb11ae8ea0e588b67d70b8b4448d6b937feaa609f9b618820ae

  • SHA512

    64a5f1336ae9e87cefe5716a0fbce0b467ccf04b7e79c0b01cc746902c5c6946f8b5ead2f3e1ea0784a43bc6860edf9d178dbb02cad03fa31b18108e3ec0160b

  • SSDEEP

    1536:FdnvCfPGbXmW2NoEL+JQhgpnRKt89kpdTgG6zQiAaGvwJM4EFGQazfu4oifvN:jnvu0mTziog5uSkpt5Lvw+45fnXN

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\676b12ee2041f20bc3fbe05f266c94d3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2512

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b96dedd32bea29c563a23417373da230

    SHA1

    8c3bd544b650e824f61202b913917b47a1f1dc35

    SHA256

    0f0c1d88a587fc007e3826048aeaa2d0318820d34839317cef657d582d5c1705

    SHA512

    8765a15db5da07ede21100d4073fc82c2f7fee3fe16f53e1820f172159aaadf81ab98e1ee19233250ef7268925cd4db9ba82d8aac5d15520864cb4d4817a9a1e

    Download Submit