Overview

overview

3

Static

static

3

c57cdf298f...b2.pdf

windows7-x64

1

c57cdf298f...b2.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    13/03/2024, 09:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c57cdf298feca719f342c6b0ec7724b2.pdf

  • Size

    88KB

  • MD5

    c57cdf298feca719f342c6b0ec7724b2

  • SHA1

    e5cd643914e849b134dbc8bdcefecd37dbc67799

  • SHA256

    f8c11096c057becc2a2694c530ee56bfbfd6ea2442866a1735db852b5fcde44b

  • SHA512

    cf1159a2b011d39a5f5dcf5715dcdc8d90f742233a258a20adcb3ab1564de706c2913d44925e8a585b2e5d93702edaa0b8dc57da128ca44c62e65b1e2229502e

  • SSDEEP

    1536:ALtUBjP/dtLWK2Sf565h8fUzM8eQzDTk5BWGpOKb45WVwqzPLbImL:hR/dJWKP65AyGUD1Kb447LT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c57cdf298feca719f342c6b0ec7724b2.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1044

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7f2dc227dfd062a67fe6e1fc9e32c116

    SHA1

    6306e02a934fac600f4e67572ff82db22b473430

    SHA256

    12717fc01dc7c9aeb6cdb01de3942ff597132f8cf35f8d9066bd6e0ca00f1bb6

    SHA512

    d4080b6cd0aa4a05d00becf2374635e0d996ea9e30374108e81a41ed7d0b4e49ced25e1202fc1978defc21f1d6bbeb64234b8825ef0771d298efd82d7a6f8cf9

    Download Submit