Overview

overview

3

Static

static

3

bb5e98ec45...29.pdf

windows7-x64

1

bb5e98ec45...29.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    08/03/2024, 13:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bb5e98ec457a0c3157ffc7b9f6994929.pdf

  • Size

    88KB

  • MD5

    bb5e98ec457a0c3157ffc7b9f6994929

  • SHA1

    bfe699c016fff4b79620e43bccbe3ad4165dda09

  • SHA256

    8ae98d3b88ee2d9ce88848ead232dfc2740a6f294785648c0f910813d3d606b9

  • SHA512

    d14d1f3b4eee58a08be39b559a402d91b5b38809aa903a2dbc70199c46fe8b4b167c3170f9f63a7656eb65ea4460382be6247b45ecd1978d358d71287e84d75f

  • SSDEEP

    1536:id3XT749TaZRyDKDGDZJGThQPhIS0rUWfyh/WHpOvMIcOPcSWz4pyeVEYDm5U:K2GoGDEboYhArUW09vMN8cleVrDV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\bb5e98ec457a0c3157ffc7b9f6994929.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1728

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    fb556ac0a3d32f63f7a91ec0e64ae3b2

    SHA1

    ac3041a63ab62c73131bc69066e5c47f5c511459

    SHA256

    8964bcfa792f3df46487daad7f63e1659f211e38a24024d4318b166ed78b0616

    SHA512

    66cd9fc4d6c391df23c2fcfa6d3cb7f688e4f6e6c7c821bdfb7cffc71c97d4eca64a67ed4a06ecaf81cbca815a4b243343ce02ee0d43c1f17b046f5dafd6901b

    Download Submit