Overview

overview

3

Static

static

3

c1c50d6624...aa.pdf

windows7-x64

1

c1c50d6624...aa.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    11/03/2024, 22:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c1c50d6624faa34634aba11547ecfdaa.pdf

  • Size

    34KB

  • MD5

    c1c50d6624faa34634aba11547ecfdaa

  • SHA1

    30e8542d5e3fbc7a378c892663726023aad5b56c

  • SHA256

    1b6d4edd168d5ca64a6dc4e27e79305696143657da07eb42d1bdcf082a14b008

  • SHA512

    1552c4a20403874ef8b3a8f97057ed44d32752a6ec9729c82b715dccb836acdf1f94408a241e9a176c0a49f2e2904019b51e51619750641a4c04ed0f365f53e6

  • SSDEEP

    768:sStyh2u7kzhbddvmlAGPAscWZery9GPjeK3szpPXWhpvFz:sStyHkA2JB3reK3sVPWhpvFz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c1c50d6624faa34634aba11547ecfdaa.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:624

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b93a32bccd472d3360a72b9af9618a00

    SHA1

    dbae09b2b3e8b7eec73d44faf579e5a219651173

    SHA256

    126295ca0503f20c2676ecb5f9176c4dc63de451c7100f11e5f081cb391d3352

    SHA512

    03a249e3ea9dadbf35101aa9fd8ad80f10c6e997670b6209e94176eb7742349e667fc5e8fcb2f532e114f4e6b0f79f0a2fb0f6b8ec801a347f6997cd88e74cb6

    Download Submit