Overview

overview

3

Static

static

3

bf01e366e4...d0.pdf

windows7-x64

1

bf01e366e4...d0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    10-03-2024 15:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bf01e366e44269bcc1896ba01bc517d0.pdf

  • Size

    80KB

  • MD5

    bf01e366e44269bcc1896ba01bc517d0

  • SHA1

    be25ce5b279a295301c199614032ed1abe4bae9b

  • SHA256

    afdcd22490c1dfacbc623ee116c86e675f889f609f045bdf09a6e4e0716c3a40

  • SHA512

    b27a5761b0f4bd997ff4308826b9fa7b20c736ad60317b4c8f0ad30fd8ec6edbb702e1587261ef96cb8766cb468e2c39479476adeb59c1a85cdc620cf5b217d5

  • SSDEEP

    1536:cC6Rk5Ox6EHvUHeUdziSzBCobFt/YIMFCeckVqh02gW7QxuAT9pb:Yk5+62aziSzBCo5RYtFCeRMh0tW7QIAn

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\bf01e366e44269bcc1896ba01bc517d0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2328

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    18131339bf29fb00353cfbd175a94ae6

    SHA1

    d32843b15b47797b3e4b73f7089cf21b7e290715

    SHA256

    699d90cc1f44abfc4d8db2c3df9917cf194da5bb4e1040fdf26187796ac90d93

    SHA512

    0bd6f2006e0b33e0d04fd31547491a819674975c9928b32d9b461b50a264fdc1dc066cb12a8bb6ce8218bec332f65255f7ce0ea08dab50d98bd68d3e0ce7915b

    Download Submit