Overview

overview

3

Static

static

3

7170aa04b7...95.pdf

windows7-x64

1

7170aa04b7...95.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24/01/2024, 04:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7170aa04b7d276b48e8527cd68768095.pdf

  • Size

    81KB

  • MD5

    7170aa04b7d276b48e8527cd68768095

  • SHA1

    72974d198f01ddecb43c192a7c6bc083580ec6f7

  • SHA256

    03851a566c3989f0c6a74424ddcadb52de5e4e70f2882d43ba861c85c9d29f17

  • SHA512

    f9b7dcbb2118ca56df63674c4b102566a42c44f308f7e8db748b900635f0764f9d6b5a77fd8e1a4628174abdb66ac0614e3c5faacee75ba9e8585e33878578e6

  • SSDEEP

    1536:7I5x3FJUPx1CodfRdvSdppxEqRGXbURYG1GCQWWIioeHW6pOu2O5gaVFTW:8H3FJUZ1CcfTvSZWUGXbUBocu2OLo

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\7170aa04b7d276b48e8527cd68768095.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2532

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ca5aab4e8e7f94a9f1856969f745416b

    SHA1

    5a9bd4cf8ee71dba249a6d8ac1db313857f4eb7a

    SHA256

    a021241761dacad7a447d4cace04c21dccd46b5316272d843673309909775e85

    SHA512

    db4a4c5b0b4d54d76e7611e7bedce3fe3bb480fa8d0047c08b69f489e8661301ef33cf7003c04aa6e264d8ebd5be63958c1430494bc5155ca6a5eb117177f84e

    Download Submit