Overview

overview

3

Static

static

3

680bf974d3...d6.pdf

windows7-x64

1

680bf974d3...d6.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/01/2024, 16:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    680bf974d37e720c4989eb10252361d6.pdf

  • Size

    96KB

  • MD5

    680bf974d37e720c4989eb10252361d6

  • SHA1

    055ce544c79d2a6e8b91e55bfc4ff842ae3ecf83

  • SHA256

    ed638b7528cb7cb2dba35131cfb4fd0289ada073e1e34e920964ccd84861aa2c

  • SHA512

    787cc8e5b2179fb010074d53cf35e599ab01086945cc64bc40a5f7bfb7a8b3afc149178b98d5e6da42c7a095b6146f8345d90d6dc4df02b9b7e04e3dacc0d34e

  • SSDEEP

    3072:RRUSbcDPPbuzd85QrGjd8xQyGBuSzwzdZHS7k:RRFbELuhJKdHrBef

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\680bf974d37e720c4989eb10252361d6.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1488

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a8e32e0c7c629f4497a436b9cf2757d0

    SHA1

    5cc6e7ef983965930410c4fdd145215625095813

    SHA256

    e3be853c8d459a7b4e17107f8a910235507ea9d865030a98ec34915fd98c095b

    SHA512

    718de0739ec5685e5430a84b1e97ffcbf935f024c097f0548ebe6f6e5458b7c07494a14457a42faa62a60e4d930d8924a505e1a179d71a56dd09fb499e6d533f

    Download Submit