Overview

overview

3

Static

static

3

b44a254c49...5c.pdf

windows7-x64

1

b44a254c49...5c.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05-03-2024 08:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b44a254c49b098818ffb97d774387b5c.pdf

  • Size

    90KB

  • MD5

    b44a254c49b098818ffb97d774387b5c

  • SHA1

    68d741a59d239d3a820dcc7114a5befc7996e582

  • SHA256

    2be87127bc8b0ce09c67694d085b672a6a2b4710156e23873e8339ae7d8179fb

  • SHA512

    95664338f12e7e9180488da7f41370e2160b302122e46d0046e917b2beb700b41070405610fe5ef4248360d35555d3b492edf6c78bc679d9e83c62bda4758b6f

  • SSDEEP

    1536:7wuNwC7lEvKyKrD5w91hpIwZvU5NMuLyHJyoiWypOlLi43PWfeOTdN2HiM:kuNwChEvKLrD5Q1fIAc5NMuqsWlLJ3Ou

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b44a254c49b098818ffb97d774387b5c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1164

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ea94a3f1b617ead10ba20cc933ae3ab9

    SHA1

    90040f5c9f9f1c5bdf11ef6c0714a6c47ea6fbea

    SHA256

    2e5d963769e49c00731637c56af45b452743fb419b3dfe1b428c7a441bbe5db6

    SHA512

    fa44ed56f2c94ab710cc54bfd4bfdf4b7228ad78b3e919170c627bb59860d0a51267e19b20caecfabc36998d10128c067304896782aac9ef7e92b60aaedf33b2

    Download Submit