Overview

overview

3

Static

static

3

bd0437902a...a9.pdf

windows7-x64

1

bd0437902a...a9.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    09/03/2024, 22:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bd0437902ae070dc8e1f5386ef15e3a9.pdf

  • Size

    107KB

  • MD5

    bd0437902ae070dc8e1f5386ef15e3a9

  • SHA1

    1d97af5fd84f7e1f2f74975b8fd19e28566fa93e

  • SHA256

    8b1735d5c8606f68b4f916b21b94ac3f7a3c3732615547ce4baa790e5b3e235f

  • SHA512

    f4359a6ab30b086fda01cc9fa416ba204349d6f29914c8bdf63f8ca42034bfefe0606244392e2a0fb991539f2ad6c6685f4400319a1b4460550dfbecde71893f

  • SSDEEP

    3072:THmLBgHAMdfzLSXQa8sxMaZJMC9B2bqjvp0d:THmLBQAMNzLE8cjDj22hM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\bd0437902ae070dc8e1f5386ef15e3a9.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2192

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1f35670bc1d9aa9b4d1301df37a897e8

    SHA1

    dd32ac0cb8ad3d3cf6afa6133112cb948f267ae7

    SHA256

    c031e02429d7d516aaa048845f34e7cc6af3c9089345cab53d49b7ad8efb015e

    SHA512

    3da5eb974423e00524799b3307a3ea07c07013be4ffc676a5cd829095e7b2ddffbb1076f209cabbe8e2f14ad5c01dbd99ddee9dbd8186f3cf7aba0fe61a224e3

    Download Submit