Overview

overview

3

Static

static

3

b74c8f6ca4...bf.pdf

windows7-x64

1

b74c8f6ca4...bf.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    06/03/2024, 11:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b74c8f6ca488ac756c52621c2a0a52bf.pdf

  • Size

    89KB

  • MD5

    b74c8f6ca488ac756c52621c2a0a52bf

  • SHA1

    da29ec63c970736aaee7208976dd4bd970969b7a

  • SHA256

    7dc842e3553ae251f78a546535c4a53917b142d63ae129dfbb8aa91ee74afb57

  • SHA512

    2f6299cb9c88ef12eb47ed25ac717d375e3710a40f4e6411db28efcde9b01d8e336e3906b90c0446f8b0028c6e756b22c4896a8f3aa0235c0fdb0b59277b499f

  • SSDEEP

    1536:oyemdzKhdB6GWYnQwERbH/j7kLiyfKbi6nwl7GqdkwWO0yVbl3tGZVBkYJeWspOn:TemkZ61dfjALi9ivkUn3tGZkYJxRh

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b74c8f6ca488ac756c52621c2a0a52bf.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2476

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    74f019f165e6431de7a7eeb409070ca3

    SHA1

    f3af854b4fd5f91e9821418934c6e9f5d4231846

    SHA256

    8e06f2f7db56db326322d2d3dc7bd9fe340250a45f8be1d1c3a095d7e7192e9e

    SHA512

    b4f4b14b6d0846c96f1e29d6df2d922afed471937a31bf1077b691b7ba728b4467ccc975f0b7facd974bc81b68d0768be8d7b56608cfcfe59a47d8e8752e7bd5

    Download Submit