Overview

overview

3

Static

static

3

8efc5b715b...b3.pdf

windows7-x64

1

8efc5b715b...b3.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    04/02/2024, 11:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8efc5b715babb845171599efb6474eb3.pdf

  • Size

    85KB

  • MD5

    8efc5b715babb845171599efb6474eb3

  • SHA1

    915cc3d1b2c268f936bbf46e16dd26236f10ade8

  • SHA256

    35f0f4a57e5f8c347de59c61ce2b30b088231cc01a0a078f13d8791fe394f53d

  • SHA512

    872fc73f09567228954dfaf9a4af7d55618ce3e5f30a529a7a1c6ac7a8dcc13ae9e2cef2e002203308a4a9eb985b283971843da32823155bbfe5493a7f11ed83

  • SSDEEP

    1536:3SJIg3OtwAnt3OzXYk4dFGSWJb09vOLREypVCGQ8+1mWHpOvQK6YKWcp+qYgbkFd:CJ0uAnt3+okEF8JEvOqyHCl8+1GvP6Y7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8efc5b715babb845171599efb6474eb3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1996

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3cf4274c35c1554bdfed312872d2dc02

    SHA1

    29102e1f098daf9f97527974413bb96c4b42131a

    SHA256

    2f06b6c8380332e521d4ec8a9ca20b56db6bd787374955ded0bf2aa6b23c091b

    SHA512

    354a9e89a26a8de08588fa58e2be20faf42bfb747ccd8af6c5950d97bb7099290706be318d949bbc49b89a46532cac316c0153eb31ade3c934f45c362906ff31

    Download Submit