Overview

overview

3

Static

static

3

888de2f496...30.pdf

windows7-x64

1

888de2f496...30.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    02/02/2024, 04:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    888de2f496511ad9f9cf30a23e160d30.pdf

  • Size

    45KB

  • MD5

    888de2f496511ad9f9cf30a23e160d30

  • SHA1

    c689c423b05c6c32d9e7db162a9e40da47efb30d

  • SHA256

    4086619fe9af3364790caf138495f061603df58d101e5b7744f4b6c090ccafce

  • SHA512

    6edd346fb46f2c446b6fa0144f187dcc762aad58243f53dfb4299d8962fc8fd1b4aadef1b272e4e7f59fc6f554627258a327c01516463a01ee1d225a756e99be

  • SSDEEP

    768:zvxzU+XIfhapexzqql49joSAb+yKZLDlxaEhjVlCx9J61:FzpIfIpeIql4umyOlrhvCDJ61

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\888de2f496511ad9f9cf30a23e160d30.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1992

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    682477f1a2a99dc32af3cfbf7523aeb8

    SHA1

    66aaf01d5f86d586fdd74f41f3fb68090cba0900

    SHA256

    c37ec4fd68aa2af47ba25d19c7ba8fc7ef2562a8d15c6b131fdc5800865418b5

    SHA512

    a422d7a62fca59b295c5581f5c8164f2ae9bc1df21675f0dac1f3239b3a4f2106209bdd817335b7caec3946b2232591c44fefe77f5baecad0860157699cb06ed

    Download Submit