Overview

overview

3

Static

static

3

c9b49d61e6...44.pdf

windows7-x64

1

c9b49d61e6...44.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14/03/2024, 21:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c9b49d61e666a69acaf4fae0f87aa944.pdf

  • Size

    36KB

  • MD5

    c9b49d61e666a69acaf4fae0f87aa944

  • SHA1

    fcb754e83dc6f91c305ef8724cc039f7e61709ae

  • SHA256

    af2f0054053c28c26185ddde8c9cd63ae5401849663abf6d5ab4420bb2cc1c42

  • SHA512

    0bc84e662fa844ffd9f1cbc496d8b4392bc8b922acbad2c7e34c60793186a513738a4548f0f376daa2e8bfb398685cd4e6ee36857013e738ba4414e83c05943d

  • SSDEEP

    768:3rC4nadMjdwltKmrdmjoZbTdG2dJpYX6LULUnUqZsXSp1l80b8gdvobMHp:3rCgMMj0EXcT5pYX6ALUKCpdAgRooHp

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c9b49d61e666a69acaf4fae0f87aa944.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2132

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1164145d058e02270f6b258b4b0cd685

    SHA1

    7d46dac0d0cb0fe0b66e422cac422645a5e79375

    SHA256

    0d138a949a07dda9786633eb9c83f305e83ffe8b951be0941d0542761161ba75

    SHA512

    9bc9886b5ee8a0bc6f20335f1f61941724537db1399017a62cf7d9d82f09ebd1e325511d12638a0df429f4e152b398a5fefbca91be2f5aecb7518bd23d5bbaa5

    Download Submit