Overview

overview

3

Static

static

3

c266cee41b...d5.pdf

windows7-x64

1

c266cee41b...d5.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    12-03-2024 04:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c266cee41b08c4d1122ba6cbbc75ecd5.pdf

  • Size

    47KB

  • MD5

    c266cee41b08c4d1122ba6cbbc75ecd5

  • SHA1

    909fadc31a24476562c0631f851c57b70e0830a9

  • SHA256

    450b13b20f07d6afe2b45d2f48aaf7c5ddd5d9aaccab8ad0a48f775618823b87

  • SHA512

    8a832b7c2e509092566ccd95dcc5c9cf94298fc957eb2c0174d966ff40aed688c4f4cf1776f82da10a73a4d46edddf9a3e837f0a62f8c991aba37addc8dcf14b

  • SSDEEP

    768:H53VfwWRibthn4r0RtcIRYmxbVh1gYp5wakh7kZ0BtWNBar05VpcI:HIS+zRWIZxbVD77Z+tWi45Vp9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c266cee41b08c4d1122ba6cbbc75ecd5.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2160

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    53568cbc4a9498cb8d34076d0963c835

    SHA1

    e3806af060bba0f086346b23833ca52b178dcc27

    SHA256

    fc8f42c542af7d94141b71bc3e06b3dcde05b5c39d97248bc418dd5ab0c95fc1

    SHA512

    79608fc7a44ba6b4d495206d47f11ae664a8dba20b6b0c01f9bb1398565da52f900be1decced8dcff0659f8814cbc69c9cff025791d4a052c1a6cefcf39ea8eb

    Download Submit