Overview

overview

3

Static

static

3

8971e114ae...fd.pdf

windows7-x64

1

8971e114ae...fd.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    02/02/2024, 11:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8971e114ae76ee2761ef6ec9f623e6fd.pdf

  • Size

    85KB

  • MD5

    8971e114ae76ee2761ef6ec9f623e6fd

  • SHA1

    791e8cf710d002b3cd06ad09310e0c9432fc5e5b

  • SHA256

    b301d55e95808b51ee4d58d6f1abc28363565b9836b99ac9df7d424e532270f0

  • SHA512

    5e0e5d41219729931ef2fd0de24d0d6a4cf23c792ab5490ce547fae2aa26196b4a2af28e2c6875f79c23e36b34bf7190414ec263d9b4d1687a3780622353f8b3

  • SSDEEP

    1536:DfjUEHd5y/EkuU1lvq7vhipTcuY0XItSuRAK6SkKKJNWKo9msmWQpOC/FZ:vHsAmytATvrKnkpJ1QmsZCz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8971e114ae76ee2761ef6ec9f623e6fd.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2896

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f0a2e2b0f0badb688dab2dd84ce14b53

    SHA1

    05ad956d2fbe0bd1b22efd197fb6cc140960b479

    SHA256

    1635fc0c05442ab34fe9163f64535af0f82130c7a42437929f5a25da7e319cd9

    SHA512

    b3607340cc86959ceac1eed2b2f5058d3b7c93d6f85f34c03dba04d06b0943086ebe2220e97f81d4b4f19f2ca316afd7cf2188d924cf60cdfaa9e6be845044b8

    Download Submit