Overview

overview

3

Static

static

3

79d3d90702...11.pdf

windows7-x64

1

79d3d90702...11.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    27/01/2024, 09:05

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    79d3d90702e796fcf8f50da4e3a8b111.pdf

  • Size

    31KB

  • MD5

    79d3d90702e796fcf8f50da4e3a8b111

  • SHA1

    d071ea4d619489998e5003fe1dd3ac6b1d759116

  • SHA256

    7cdf88ce8f04835d2a37840f116b9c0b83cc384c6a257c3e7f576d9c926be10f

  • SHA512

    aa59ec49bcd166eafef79a188edfa8fd15f521f5164f89beca993d6fd102b462746536908078de24c0ee79bca2598c678a3ff235d25e056fc68cb34649aac94c

  • SSDEEP

    768:VdBu6SL2YVutJyR4vIwubjgUI0/TZCKu70ClyVMpl:9lSiYqyR4lub8e/T4KugC2MH

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\79d3d90702e796fcf8f50da4e3a8b111.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2528

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          4fd7495f6eb8f038eccddb55619abd7f

          SHA1

          7a60d44dba1f6918a3da29eb6329f8162466fd56

          SHA256

          527442badd4529f860db9b825d47de48aaf2b24497fb6419d2fa9cd2e2c40214

          SHA512

          1f4c4aac35584484cf451e11f5a0084a48acaad2e6fb94d5cd7b97cbf18bae4d81f22c3aa078bd2e7f1a6cbfd372b97aac2d83b8bc5a25cf7e63eed9af5615e1

          Download Submit