Overview

overview

3

Static

static

3

a3eb80ce90...27.pdf

windows7-x64

1

a3eb80ce90...27.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    25/02/2024, 13:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a3eb80ce9064fdfbe1cbc7738f93bc27.pdf

  • Size

    35KB

  • MD5

    a3eb80ce9064fdfbe1cbc7738f93bc27

  • SHA1

    4f9d8df939d082b0d1c62b805d769437e9a3886d

  • SHA256

    6f5750c0b6d55e4dec88fba4a033eeaefd16269a0963159c841e40bfda1d3274

  • SHA512

    578b3e2825c928c4dbf63e3c6b48ca3d46a73c92261e4463ab31ee45f458c26a6038a5db899813e3dd0a4e8a4d49aa9a534f4f65c5c20136eaab918af2112ad5

  • SSDEEP

    768:bIIFg1NswA2ZLmQPKF1Dnq7EDvg+r7wscxVOPZFH8QyKiq:UA2ZtP17EDYiwsWVOPZFH8lKiq

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a3eb80ce9064fdfbe1cbc7738f93bc27.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2184

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    98317acad61479aca70c6464feae7e53

    SHA1

    ddf252ce858690e465521b592d5e3396381983b2

    SHA256

    111607cc49afc05f798d471ed8e633d951b89db117c15a629f72b4b2e2dae58e

    SHA512

    e5bbbfe496e8529a16452108aad818c68f0ded8a169369efd796f4f48515afed0607bd082fd38f93674768ed31fb042373c4eb7b35916e5717c9e8b141f1b523

    Download Submit