Overview

overview

3

Static

static

3

aaffaed50c...39.pdf

windows7-x64

1

aaffaed50c...39.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28-02-2024 04:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    aaffaed50ccd4787150875c6b5f06a39.pdf

  • Size

    42KB

  • MD5

    aaffaed50ccd4787150875c6b5f06a39

  • SHA1

    488491766d00ada6c38ce47592f895fc9412d017

  • SHA256

    ab2b868a84c86636844a15ddb1d73e89f5dbd3b3c729020bc2d919eb720b0ecf

  • SHA512

    2a06bc9298e22a3b2daccda618e5abc5337c8e604a693159cad8e43b3c68f16632d25b575618e77edea67993ba9364217a6aebc205cf117f910f4221d130a149

  • SSDEEP

    768:aJ0kqd+sMPPtFghTM6LWdrKBjdgzL+d0dXofwbBsrJEocEzlrHDaOt75XAL5OW:aJ05IsMPHETfe0hgzadoXKTJiChtfW

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\aaffaed50ccd4787150875c6b5f06a39.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2924

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ed64a7338503dd2371bec7752f48a0ec

    SHA1

    54092947afdcf5199d643b6e72a9fec52779f55c

    SHA256

    e649667e21e7d89746dfd85f53fa429e6653c7b0f04345550733bc59b85385d2

    SHA512

    fa35f80d000cf67e9d0a64fd094fb3780cb4f574486cefa65ce993b18edde64aa4e1396d29016531a4d76ea6eecf64acd35ecb24a23a6a4b4eadcfbc949bbce3

    Download Submit