Overview

overview

3

Static

static

3

b9d5f5df88...e0.pdf

windows7-x64

1

b9d5f5df88...e0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07-03-2024 22:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b9d5f5df88a6a3365ea8f71e478387e0.pdf

  • Size

    42KB

  • MD5

    b9d5f5df88a6a3365ea8f71e478387e0

  • SHA1

    9b44216eb0367ae45ee44024a57f4e7784ee5f80

  • SHA256

    21da4d9df559b7ce7a543523d9097ebbc620b334ae6ebbfd3b6fb70007e16967

  • SHA512

    1892a960f34add08738f7e1bcd8b36a7a3d41561f66b09baeea70d01a03ff0ffab148a807199beeba556a110fe612060987c4038f42bcb1eaf7d2d6235ce9d06

  • SSDEEP

    768:IdycxKEfGf0pGIB5A6+MDwsbrcvMMrFjPFxNq8sQvzVaqRV0Xy5wtB6:IzHkIB0MMNEYjPFq7yzVaqb0ywtB6

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b9d5f5df88a6a3365ea8f71e478387e0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1912

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5a66d99865fe1a953be46b3a271f1694

    SHA1

    b3b8b7dbf8594f496c275c1031d1e883e7a00b01

    SHA256

    8ad278e656973f2aec65c66caaad6b00e18db7f078cc6b1ee3d718065a879285

    SHA512

    b1415249613e463cc6386183a0ae5fe4deb84d787dacf1d5eee62b76fa4d3f5fdb68606293f9dd6160d3e8a4f545b0c9c36b084f09bbef17e98dd216a8b72b77

    Download Submit