Overview

overview

3

Static

static

3

bd166f94ef...e4.pdf

windows7-x64

1

bd166f94ef...e4.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    145s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    09/03/2024, 23:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bd166f94ef40c829dc11af2628226ee4.pdf

  • Size

    34KB

  • MD5

    bd166f94ef40c829dc11af2628226ee4

  • SHA1

    c85a2a696cf0c39cf4f5c2cf1ad227b5c7cd1876

  • SHA256

    9679d147cafc1a87835e3a770c5eca5a97661a203287121cf542246ed5b525c7

  • SHA512

    a8020d6872f015d2eb7e4b53ec6b9f6ba4b1bd53529aa6dc1a09a4ee2eeb6c1934c4460879d22a1b2ed629a624eacbdb91c637f6f91474e91c6b01e61c2effeb

  • SSDEEP

    768:PySutSHLvWIP667fEgPHuRPFveS449dJe9YrcVdsm:KSu0KgmR4LOrcVdsm

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\bd166f94ef40c829dc11af2628226ee4.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2964

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    40fa337d98f1bdd0e109c3ed8d09082d

    SHA1

    78773a94dc9a186431047304409fc2053eca060a

    SHA256

    fecd58537617df9b2938736e5fe0ac7531960884293cd4d2e06a691cd3084851

    SHA512

    7d96ad4141f8b067d43b8a14a9622b6f54e8dd9942d1ef919b8fabc3529666afd8d7018a22cf3f8a0ee9405faf238b991b6d4fa610a8f5447d6e68ea79e6326a

    Download Submit