Overview

overview

3

Static

static

3

bfd4280638...70.pdf

windows7-x64

1

bfd4280638...70.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11-03-2024 04:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bfd42806384dc729ce89b1da66f1ee70.pdf

  • Size

    35KB

  • MD5

    bfd42806384dc729ce89b1da66f1ee70

  • SHA1

    639deed0f043e01c6c325f67043a4cb00e7115b9

  • SHA256

    de418b7baef01ee0e9a3f524fdd72ac09a807e95ec4e7d0841e2ce99f37f3ec6

  • SHA512

    78366bdbf267edb70ffd7e1606a332d3c1fcceae62c478cc0e5a5716a987bfd85138b6834b64bc11147c8461c537252b0f21462b39354834a8bcd47bb9abd7ab

  • SSDEEP

    768:nk0HDmruVAsAVGvgPQp5j2/8VGQe7wArpQ9O9S2kMdfO1OThu:GuViVGvu6jlGNrpQMnfcehu

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\bfd42806384dc729ce89b1da66f1ee70.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2840

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    017407bae966a5e6ff806f0aa482187e

    SHA1

    2bde8074e19f5dddbdb9ba6da4fbf9030ee97229

    SHA256

    38dd385f50479899db0660f225d87193147c67e014b982e9f52f14f5eac76f8c

    SHA512

    369d2a946e9bc5bfaaee8f3dfe99ff4d67778d591a6e80135b2c3954d4f5dbe15ba376ecebd488390945e82809a26d109f0d411fbfdf72efe27ba81768709613

    Download Submit