Overview

overview

3

Static

static

3

8e17a1f9eb...5e.pdf

windows7-x64

1

8e17a1f9eb...5e.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    04/02/2024, 03:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8e17a1f9eb9897e84f7e203e94917c5e.pdf

  • Size

    85KB

  • MD5

    8e17a1f9eb9897e84f7e203e94917c5e

  • SHA1

    ba4ef543d1d1bf7336957588f1cb4414bf7abcca

  • SHA256

    cc01bf9fc00dd0f9179c42a1ce6bd8254559a4e6e5802f4d988e3a1f6b09bd48

  • SHA512

    970fed9b16580ef86e965c93931ba0660103642c927264b665e179ed5e8b7a44c511b0263aba380f1c49653523adcc4b8ada0ae68de87bbb535171fcc25af126

  • SSDEEP

    1536:7b39Z5L7GY7CTygAjrgOW2HyptBGHivm/E3Cq1v1w8rY93SgQQMdWkNpOPaW/Z6p:FLadKjrgOWeypt0ivmIr12tShQMGPvsX

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8e17a1f9eb9897e84f7e203e94917c5e.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2868

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    05c1dfe2b62f58e7cdd46727a68e6fff

    SHA1

    ee591cb590322f3436a7b21c5aaf39c55aa295df

    SHA256

    1057689b153edd879f2c9a15cba62b9c266249c42c534f27dd564f05a27290a4

    SHA512

    1fc82ee9cee4dee0f193967267e93d04c3943292ab50f0f0b415277c2ca41a294a28cc1faa3d0b1c8330d818dcee3cb6908963950783af0833bb1e1e4233b255

    Download Submit