Overview

overview

3

Static

static

3

960da32488...f4.pdf

windows7-x64

1

960da32488...f4.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12-02-2024 02:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    960da32488be51537dd68ec5f2af5cf4.pdf

  • Size

    34KB

  • MD5

    960da32488be51537dd68ec5f2af5cf4

  • SHA1

    5690ea25146a578c6d84d59d4dfbe6419360c853

  • SHA256

    1dc0f71ce414214e2a15bcdfd030f15e61ebf369a2f45968820c37fe65f538a7

  • SHA512

    f57f46d76b49c37db4089cd45b610ce1c14561d00f63f3cc794b510baf33533118495d8b85d19bac731d9a65d300eef6583789bc873ed8910a536e5cd799b9f9

  • SSDEEP

    768:6aYnChd02oP+TZ09SecHY67vCs6Fs2kLfTKZ8vspAYeX7pP:FqsfTZUPcHY67TTA8tYeX7pP

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\960da32488be51537dd68ec5f2af5cf4.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2444

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ce41510b8cec450de7d6bc8646b08ca8

    SHA1

    a8205f7d530067166502c524706178d2308e90ed

    SHA256

    f2fa6c5b4c0a4139b3c8798c8b8f11bfcaf0faaef6775c1e3c76a549f401d619

    SHA512

    6c650da7cbe339199af5cf25d227d7e0868de2b00363f67547e8e431ece07323c2473e9fc2caa4838fedf371915edc2d52f69c9c58f7de251bead18a73328c60

    Download Submit