Overview

overview

3

Static

static

3

aa1e94716f...50.pdf

windows7-x64

1

aa1e94716f...50.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27/02/2024, 20:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    aa1e94716fddbf16f83a86f713448450.pdf

  • Size

    133KB

  • MD5

    aa1e94716fddbf16f83a86f713448450

  • SHA1

    dd3c7e5bdd0eb7e54c8c0b752667de1a663f8172

  • SHA256

    f456172b7b73aae57863ab040f0479970408938db41b209d395b6b22a4549b0b

  • SHA512

    2a2e53357410b00728cd9c529b8197d75e470146734951192b0e9f401c1847f88fb360de11e01b61cad203cc9653b0415b475d5f3a995f9781a6d0e755ca6c3d

  • SSDEEP

    3072:jy0OYnJBHSwDEtJ8xHoNgcAlvE0dnpCsqLCIkgkbZS3:YszHtfxINgPvEwC3K0

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\aa1e94716fddbf16f83a86f713448450.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1284

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d55110aa5a0d51f4f335c21d2f57633e

    SHA1

    631903c8400177e22d4eaee7c67f4892a2357e69

    SHA256

    fceab2c6f10a217952181d6e6cc336724b49074a1cb82caac60f8d9d9be65ccf

    SHA512

    87a25759e20d2d5f1bd714e62fdcb99fb101825e723423ce4ea805d6fc51a4c3dc711b25f39f615557adb28cc542631c6a3e9301f82340c5dfa52951694564f9

    Download Submit