Overview

overview

3

Static

static

3

8ef9a40e4b...09.pdf

windows7-x64

1

8ef9a40e4b...09.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    04/02/2024, 10:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8ef9a40e4bd0811a27682cd25ab20709.pdf

  • Size

    91KB

  • MD5

    8ef9a40e4bd0811a27682cd25ab20709

  • SHA1

    ca0c7a2cc7ca613e35a5a7cdba752003995a0773

  • SHA256

    8b992eb2186edec6076726ac3d8a29639fdeb5d9bf020c056324ee66d762b59c

  • SHA512

    94545866f2d52ad35f579ec30d1642e6fdc52f9b4e603985a6185627b504cbe008925746934a70e48e328949c00f6bd1425908dc7bb47f22e26efed33cb1d3f7

  • SSDEEP

    1536:pwzGDS4LGdklsr/cnAaqgKDiqrwR8yNtUQzqKm6l5WkNpOPu1MatiJWqWgGwpg8:2zGuOtnAaZqrw7RzqKFliPu1M4iugGw1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8ef9a40e4bd0811a27682cd25ab20709.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2904

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    511144077b54479ccf80af37e1cb4f36

    SHA1

    f2c983283ee05ca2757e0f89827ecdd7851c9a94

    SHA256

    f04cca135b70b6c4b856fa3b2d4db981ca36b335766b8c8ef6e0c6e6812ac332

    SHA512

    a89373c08f812be3427b214e1cb1efd8eb95c97d4908f3bb9f3399d9016015e9fd2da61c0f5377d6b43c92394032b5a1ce81272e730bb58b0a57f9bc39147017

    Download Submit