Overview

overview

3

Static

static

3

c205dceca7...71.pdf

windows7-x64

1

c205dceca7...71.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    12/03/2024, 00:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c205dceca7a9759965af022cd3a9bd71.pdf

  • Size

    76KB

  • MD5

    c205dceca7a9759965af022cd3a9bd71

  • SHA1

    30962da4722713e57fcea07e1fc528764f7a890c

  • SHA256

    d3c59a4b61ccc8b9edf7773e98b8cb714e90ec7f6917db67986f263758e9530d

  • SHA512

    4d93541856b3c4dcadc84156d5d7e71f889554918dc4796db72d8c935053eda6e938013e5a3b65c8f58289004861067c00ad0554bed9c291ab19e6e744c39b44

  • SSDEEP

    1536:sVl5A6pkWCXxmbOWKcjZwSSLb2WpMI/HpNUlSTvpGj7KwAQkW4D62gADPWapOtQj:K5AQb4cjZwSpWpMQp+lSTxGju42BgtQj

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c205dceca7a9759965af022cd3a9bd71.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2900

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d0e9050e19511044df98804feeea0a72

    SHA1

    4709b6d8eec07c02aca8783eb931d6565a6ece76

    SHA256

    0a212973f1cb5a5610b6a8928530d8a9a74a5c4ea53f0e70a8747d1928c099af

    SHA512

    b75afee4268b1f9480082276836a7b5480db47b9d6090d9328925714022ec84004a78b6903a0a83a916fd0af5fe514485ff652b1b96d9a8ae15b14624f8dff46

    Download Submit