Overview

overview

3

Static

static

3

bffec12cce...31.pdf

windows7-x64

1

bffec12cce...31.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11/03/2024, 05:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bffec12cce4d9e51017c66614782b231.pdf

  • Size

    104KB

  • MD5

    bffec12cce4d9e51017c66614782b231

  • SHA1

    13dce5a43a245db4ba909bee70dc7402e433a4ff

  • SHA256

    644113befa66175d6569c2d6e18833d8dc307e0b386c7c157472994f5e21187d

  • SHA512

    97c26464bbbf175d936636760aae65dacb5c9e2b5efe710d14235707c65a7d49d7f59974ea18eaf27c2c2a42a0506d51736a28de6d0267a2deee7fd05dce979f

  • SSDEEP

    3072:dmR49FuyhZXyfOs2J0uODO8DPt6NB+SpcW8l7:8mwaPD8gOIs

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\bffec12cce4d9e51017c66614782b231.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2940

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    29cd4efc8ac37d469d69e85ff82b77f8

    SHA1

    296a688ef5c9674e1a7ea32f99e6f82aff7aa0d1

    SHA256

    d3a667e005a7d412799b67dfbca9fb544f874024066160e2cc6765be9dcecdbb

    SHA512

    2b1cdba53369f0a5aae09e4665918f30e137c7655c6f3ab20e199bb7a38f7e1b515c38f0a7ff94d4a7c3f9334903e37465d8edcf3d9520f6ef9f25315bfd0410

    Download Submit