Overview

overview

3

Static

static

3

b68095f67a...67.pdf

windows7-x64

1

b68095f67a...67.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    06-03-2024 04:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b68095f67af206463325665e0ce43467.pdf

  • Size

    70KB

  • MD5

    b68095f67af206463325665e0ce43467

  • SHA1

    447bcb5bdba0dc23b9a3e4556de300fd5b12ea6b

  • SHA256

    410e3e56ec58c7b977d86db517e309853b10f9acf58bdd0cb0578274e862daf0

  • SHA512

    99764fa04a2160f840ba9c17d43b79b2ae523ae3780a58d8f6fa5b8e30b74871891b228b0e86982b733b4f90e5deb252ff4038e9d24eb3172a86a202528153e2

  • SSDEEP

    1536:Arvt4JFieIwPcHPea7CKDN4eMbsSS8VqqrWapOtQHWmXFZ5rq:kvt4FieDEHvu/sSS8VqqktQb8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b68095f67af206463325665e0ce43467.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2092

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e3dc7d9e0a005d801f80d85738ba6f76

    SHA1

    8e6c57658b6f4a72c72e4811a9b061c8dd8db513

    SHA256

    91344c99ee4f1b7eab259f7e0e53e7b645d90df4bc6f325c9a66bdd07d494e35

    SHA512

    78320662fb3b59b1d1944e5fd5139b9990af40a4bec41a750e4017408cf05089b57adbd8ed27f91704755f5cc0cf65962c1dccce3d33eff252d455a7eae74890

    Download Submit