Overview

overview

3

Static

static

3

c18be3a02c...09.pdf

windows7-x64

1

c18be3a02c...09.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11-03-2024 20:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c18be3a02c1374578dd063ab769d3509.pdf

  • Size

    37KB

  • MD5

    c18be3a02c1374578dd063ab769d3509

  • SHA1

    a0d5f363201836483302ceb52f4719d57df6dd22

  • SHA256

    fed5fa6956c3177a17e73d1c458e08d3bb9b054732bf2d46d2775491ccb2b0a7

  • SHA512

    22170217cbc912c09d9b5cc4d8cc1fb906b07d92e2bedccb0cfe93be6e3e6d95f58ca4b0e45c2a6c293ed9a297b13c1e136b44478306ac582ca14a932ab10843

  • SSDEEP

    768:PXgCjvL0NxFOBMVyGbm/uhDQHaVFi2IC+95EvwjDg2l/mE55XuMZmwgCLWarD6:fgCrL0NxFOyVyGbm/uhDQHaVFi2a95ET

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c18be3a02c1374578dd063ab769d3509.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1728

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    dea702508031fdd50e3a0aef91ff23db

    SHA1

    6948d395fcd0af3f28353c6139ae3dcab8509469

    SHA256

    0b5b5ca1c3167e8668846875b838167912903b29476c8ea63314a3bd8b3c8a6e

    SHA512

    d329f1d182f243957c72fcf330f09871415431b46f94f655b31751a554ee8b54aee4711cfebd842e757464202bbcc1c93f963b844f0b32eb5f55a9f5b858c236

    Download Submit