Overview

overview

3

Static

static

3

b9e485f66f...4a.pdf

windows7-x64

1

b9e485f66f...4a.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07-03-2024 23:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b9e485f66f5b82400e1fddb8f97d734a.pdf

  • Size

    85KB

  • MD5

    b9e485f66f5b82400e1fddb8f97d734a

  • SHA1

    ed173ca6df5e6eb2c0d22146e3b2b671e0c8807c

  • SHA256

    0248b4aaded087e5ee8483816b0464ac41419e2598c5be635fc32454d50c7fa1

  • SHA512

    9cfe5280a245e29adbc61fbebfbf2a5a492ec6e3cfd5d288a01333bf645f8b35a235be7f24cc8c20e2ce31f6ffb672610fca80f2a1c999020e279813316c6d5e

  • SSDEEP

    1536:+KjbUBJDn2RuRqC/bsdGqWBYdV3bjWpMEWO+uZYhgtkCWnFRKbGIWapOtQ/18jcO:pHULbDd/bsd+K3jWaB4gzzXxtQ/1QV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b9e485f66f5b82400e1fddb8f97d734a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1196

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f14f2f5441973f3b40fdc66bcce7a7fd

    SHA1

    87f642786e0ba4f8956c0d72f15d3d1b598db288

    SHA256

    47d2de9cfcaeba7887d21280ec6557a1d56cafed38f50f857f8e0fd9b453c368

    SHA512

    a76edd648bca4013620909a1686b4bdcbc7ce802db144205ca1814e10f5f5532ddf9cefc144f4261c5cf16bd91d88f4070646be7576a880e24ed19c33de4584d

    Download Submit