Overview

overview

10

Static

static

3

unblocker.pdf

windows7-x64

1

unblocker.pdf

windows10-2004-x64

10

Analysis

  • max time kernel
    363s
  • max time network
    366s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25-01-2024 17:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    unblocker.pdf

  • Size

    352KB

  • MD5

    58e1544e10d0f339b5f50eaf63a62e6e

  • SHA1

    812a8a29a81aecfecba8dd9ad382ae5e00abf92c

  • SHA256

    cb75f1b1356e87ffc64352bbcd47fd05431cdccfedf672499c48fdd953b5cd4b

  • SHA512

    85f79f5f78656477134914236b53d076b8c5e68d3e5dba6b7b5c735360ce140b7cd3d2cf6cd0e83c2e07c7676fb36a5396e7019d54b1142b3d98042e4bcac020

  • SSDEEP

    6144:zISwrqYcmAxHG4R8Gb3fQOf/up4ve66vGrH+pDx4R9EkZxKiE7QE93e1ZYnx3C1E:zISwrZAxHNuxmv3rHODxWhKd73hnxy1E

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\unblocker.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1640

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    346002cb48203e24b37d83ba0499cd20

    SHA1

    d8ce1db801504ba6df5cff34c05d5eac7428cf22

    SHA256

    19978c93113aee83ba0eace49cfb6afd1619dbe43e5954b443d84f87466d4a39

    SHA512

    a951acdb0700de95178c9391ab1be0b8bc7eb12103b851905d1665fbeab54ee471dfc856ed1b78e56522ee357d65c1b0b810bf15e5cf6087ab2b2dc10bce7b22

    Download Submit