Overview

overview

3

Static

static

3

b9d3559a61...c3.pdf

windows7-x64

1

b9d3559a61...c3.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07/03/2024, 22:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b9d3559a616c4c2ca3e092d5b3c16dc3.pdf

  • Size

    79KB

  • MD5

    b9d3559a616c4c2ca3e092d5b3c16dc3

  • SHA1

    2b32e470a995e060cc2da7716c54924ffaeab4fe

  • SHA256

    77f839d04968d7977022ec89b7e834aa1241b72233cf3d39a651bf9e0353958d

  • SHA512

    955b6eeb084f4d355ab37452c33a322490479c4ba5a3240518a19b17fc7706605b15e52d7c1cd26241bf4f72e9d1088665f6c7653d1fdf6a933f5d8507e4857d

  • SSDEEP

    1536:FKWPw+JYea6lWZcW27F5zQFyeqzdxo20JatBbe7FMYn7ER8razJaKLG2j8ey:UW4+6eEcWy3eqdxo9JaAM67ER8raVa9t

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b9d3559a616c4c2ca3e092d5b3c16dc3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2872

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9dde3a7ca661fe2e466dca89f95f5f3b

    SHA1

    70535d0aa46322d525f60119f09c92ba5d51a4f5

    SHA256

    eb64d191826b1574cea5c32e25a5fbdd1b8181f01cb47bbbdfc74ad54a7f8bbc

    SHA512

    7db48f214522d0388d5d591e9e35a154162463bc55b5a64ab7ca787bd1ac0fccab80a0adca219f54c07ed4cc97c5cc056700bde3a8e33603f4fb14f910c8467b

    Download Submit