Overview

overview

3

Static

static

3

9a1abbc965...9e.pdf

windows7-x64

1

9a1abbc965...9e.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    13/02/2024, 22:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9a1abbc96575241ad20897429d95039e.pdf

  • Size

    86KB

  • MD5

    9a1abbc96575241ad20897429d95039e

  • SHA1

    90f47df9c53487c647d0f8b2f3f627e66f5da113

  • SHA256

    d6b8dd3b47a46f022059ba231f07d04f088716afac855b1bfd3224b1aacf623c

  • SHA512

    46bc97f62585e472e7adf78810f0a5260c13e8b8dd8ba8fcee870dd1911b07e8bb46cf5ae14db0d86ea6dcacdff6f673dc450c55fa09a66bf02a5971c2d7807a

  • SSDEEP

    1536:nJ/EpChiMn7g1sS6WrD9qOqt29gtgPG2Uujf1VhY/a3eZWHEKFMKtbWspOR5V2:J2Ch7n7g1rH/Gs9agPG2Uuq/seKEMtaU

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\9a1abbc96575241ad20897429d95039e.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1480

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7691e855b4be054d32358e4a8541cd26

    SHA1

    2d6cacf914df298091efc9a7e0371e660c6a2fa3

    SHA256

    6d4acddd26c7525448a66597e74d8ba63927003ae1abca3f82d596a55d83a97b

    SHA512

    cb615692c00301427408a6cbc282bfe81ee4a7cdb4df5411bc06e2b8629f40234949fc8936d8f207aeb49f265d566125ae527e2905697602556a07c6864ee099

    Download Submit