Overview

overview

3

Static

static

3

8b423dffac...f3.pdf

windows7-x64

1

8b423dffac...f3.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    03/02/2024, 03:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8b423dffacba40efb90926e1b373d9f3.pdf

  • Size

    84KB

  • MD5

    8b423dffacba40efb90926e1b373d9f3

  • SHA1

    2dea3abe78d0589f25c70e78b59afef06a410be5

  • SHA256

    7cc155ce04cb9f7f4f154dc521248f7c0fd5e823b0620652a3131e7e5d6a4087

  • SHA512

    62946a060c6d27918001ee96fb44e3a3a690bc062fd017c19efdbed3ae8a2e09a56c7ae40026e95b624752b1cc004dd42ac9d35e24d0748695d69f36dc79ba6d

  • SSDEEP

    1536:iNxyWE5c4sBC5+taruDbeKplGmgOJqOsR/izuabqqdgxiQWGpOKCWPCW3U3DrLwc:qO5rsBFtareemZWGuaWqakK8Wkz6wZUI

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8b423dffacba40efb90926e1b373d9f3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2128

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e1b233866781986ecec7ea783eb2c325

    SHA1

    110ac54cc4ba1433b7cf56f7ed389ab64d3dcc1a

    SHA256

    f94dcd1699f7814eb4bb6c8244079ed0f90af676d31c316727807315f06c64a2

    SHA512

    c3ac422d10c2c9eed7a9d4c2abfb70fa2471f34bf6e4bce997007f9c184819e7bcaf68276b0ec1e03f2ab0277caa3b9fde8f1d88c303e649db5543e500602b17

    Download Submit