Overview

overview

3

Static

static

3

bb52476e4d...49.pdf

windows7-x64

1

bb52476e4d...49.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    08/03/2024, 12:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bb52476e4d28846cf48265680442dc49.pdf

  • Size

    89KB

  • MD5

    bb52476e4d28846cf48265680442dc49

  • SHA1

    0ff8dfae22d0865bacab7bf3669af1ed2973b1d4

  • SHA256

    052a6bdd4de75c26edc3452857a19cc5a34a6a583e1cc9dea90f298648c0ffa4

  • SHA512

    6e8b63ccd912319fc5ab4f12e50ba675cc91ee90e83a7ada42ed2ecad7f3eaa8c9395ac3863c196223801b6c4e67ee3f404c230bd953edbab2583b173b3213ac

  • SSDEEP

    1536:pomPEzqL31RiuYaXB1E9p4P7/hCRjH697HhWg2qZnlziyWApO6CmT:xMuL31R/x1Ef+7/h2atHP2qZn0J6P

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\bb52476e4d28846cf48265680442dc49.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2380

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d0a5c54154a55f2abed6a43ecd6a2bcd

    SHA1

    286f3958c2956f054160f18ae6c1d66fe942df0d

    SHA256

    bfe2bcf17a4967037cb4d008e0e27043e45b2a7e01a9d2e5bda6d5b4f2be7bd6

    SHA512

    aa6b3d59732f7a9a3cb31ba196b00295168d99305d943180df0702f01e3d33b8dba1d28236b62b5cfeaa48dba152b0500a3c571b8dfc63fc5fdd7bf97401c8ec

    Download Submit