Overview

overview

3

Static

static

3

71312dc616...9b.pdf

windows7-x64

1

71312dc616...9b.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24/01/2024, 02:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    71312dc6167f2ae4652a50088b0ce79b.pdf

  • Size

    33KB

  • MD5

    71312dc6167f2ae4652a50088b0ce79b

  • SHA1

    d47f71cc2868f79a5d59c70d6c899163f8362d9c

  • SHA256

    f2b62e8340387ab6e606d3d68e42d8bbdf774ea7d8a563435233909b3aa6dfdf

  • SHA512

    fc64cbacda4b60c21d481fb429c48cfd2201ba6dd777c9a3cb0bc7d33575fb4f0d93c871312bf62c7ea4642df6f6ba08f504e502dcd6562bb6c5fcacbf70b0cf

  • SSDEEP

    768:pivulkfH7qvp5MnKy1CfQ76BcQJCPm4BuR9dr0fQMNvvBto4wgy:E/Gv4nKRfYQejuR9dofHtoBgy

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\71312dc6167f2ae4652a50088b0ce79b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1852

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    24a8cc72827ab6ae147843136508f803

    SHA1

    25d0c49f3e644d0d0651578647f986518477fd26

    SHA256

    a34b6567cfc9344ca6d4413389fdaf7289b811114108aa985bdeddbadd25e7cb

    SHA512

    0637e39adc7cc003b240f36846f1e395bed7eed40187fe14ba92c5000b4d85e6e7ff6b11bcd0afd335637e542406a2045fd0f23d63a8d3aec5ef74a345414430

    Download Submit