Overview

overview

3

Static

static

3

79c8c60876...eb.pdf

windows7-x64

1

79c8c60876...eb.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    27-01-2024 08:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    79c8c608762ec3aeb94f04155861b9eb.pdf

  • Size

    90KB

  • MD5

    79c8c608762ec3aeb94f04155861b9eb

  • SHA1

    be12bdf6cef1c3651c2be999fecdb2a7dfa1eaf1

  • SHA256

    1532ba18b9ac32a82e2599f7c85c45d9d0bbcb1c00bb8e7f17c888b3f0ba366e

  • SHA512

    d09608e1d96cde2d5ab961436e4e66ea8473cefa55fd95dbf5fc6aa385f15f98ca7684df1982e17b84ae7bd2069c57cc95b507fc3f7c53b236a4573a523cf9fc

  • SSDEEP

    1536:5jE/if9kpfA8X3c60yj1HjVvTXFdNhfAkxxWHpOvTWNNud9BxDUY+CbbGK:pE/i2XX3XFpFJfZAk5vtvxw2b

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\79c8c608762ec3aeb94f04155861b9eb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3040

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1134fa711c3fb717f7e1ad9249028df5

    SHA1

    d92cd049292bc08ac8132a56f58c295e992915f2

    SHA256

    4dd944237ede904d6263d5bb5f4fb867dd1114d16713622b6336e68ef83f78d7

    SHA512

    34869c260b381cc75d3e166eee15e9dd8ede97f34cecfb3819029436bbbe5814fdc003782cb5da4cb3f44e583060374aaff7b941103e0ba4115224af9af211e9

    Download Submit