Overview

overview

1

Static

static

1

3490dc6fe0...d0.exe

windows7-x64

1

3490dc6fe0...d0.exe

windows10-2004-x64

1

3490dc6fe0...d0.pdf

windows7-x64

1

3490dc6fe0...d0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-01-2024 05:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3490dc6fe080b01509ae7adf52d6f3d0.pdf

  • Size

    3.3MB

  • MD5

    43ec0c05ceb1afb00947c44d87e8b847

  • SHA1

    4a365d76ebb9a34ed29324a51fa99a836b63bf8b

  • SHA256

    8732437f34329e783d4ac2a9ce70b6d0322c915932ca8de9ecebfdef44f02aa0

  • SHA512

    9ed21d254dccb2a8705e48d1a7dce6386fdd1ab38af139f3fb9969c1be6589aaa43e349921590de52673876aa72af6a37dca6e9557e61de55aa32584be4c4013

  • SSDEEP

    6144:qw4Wp2b8w4Wp2bSw4WpMRw4Wpqfws8wb3LFPy4XrJB60P9waXyc6LL:D+EbqYkhJBhP9Ly1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3490dc6fe080b01509ae7adf52d6f3d0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3068

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9aa801a4032d0746506de0f129b5ef90

    SHA1

    b736cc9ce69af64b7f1238ba544874ffcc82a478

    SHA256

    4fc9c56e2147ad5986663d0cffe91c7f1adc4f4cb1210dcb0468f1e920f021e9

    SHA512

    121cabca4a01fe3c8e895de6457b069402764a1ef56fdd15eac7b0d5bc3d1cd7a2c416eb7aaf2a74d272d09affae168c89e1d9d20bbaef8b75b52aaac375424e

    Download Submit