Overview

overview

3

Static

static

3

86c2d641e7...ca.pdf

windows7-x64

1

86c2d641e7...ca.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    08/03/2024, 08:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    86c2d641e7217fa7909c139382ea872d4b855833f36d8ef61c88039fa2e334ca.pdf

  • Size

    19KB

  • MD5

    b49f87e04473613011bfb2994fb679d2

  • SHA1

    40201b33bf827e9265b3a4918b970eaab64132f3

  • SHA256

    86c2d641e7217fa7909c139382ea872d4b855833f36d8ef61c88039fa2e334ca

  • SHA512

    2148835f9fdea8f44a67703761a6b5049d94bbf6447dfb11b53a3db765476633638157783f28b1a8b706194ab5c7b6d94919e8306fe093892fe319a361caae9c

  • SSDEEP

    384:slcxg7bPhCCNtmiXCUSZNRoudt909cCUSBB9GzPjS8zf2uz+CUSm:ub7bwCN8iXo7ouL9FOHGzbS83iB

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\86c2d641e7217fa7909c139382ea872d4b855833f36d8ef61c88039fa2e334ca.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2928

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    56db71549058fa9b9024dc6a20d45e9e

    SHA1

    1ac1e44de1537f752bbe53e9c48a771cec066197

    SHA256

    ccda8f5d05f199fcd16ef5619cd838c8b20d9284ea110631fb498d5e324860f0

    SHA512

    592feec9b13e4add337b7e0f518e60087e40439f923e012047fb5a3d2785005f3f702d8a7c8ab9f5379069461cd89bdffaf1a0960dc523329efcadd132c3a2be

    Download Submit