Overview

overview

3

Static

static

3

c9ba3ab616...91.pdf

windows7-x64

1

c9ba3ab616...91.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14/03/2024, 22:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c9ba3ab61635f2781f87473ffedbc591.pdf

  • Size

    104KB

  • MD5

    c9ba3ab61635f2781f87473ffedbc591

  • SHA1

    83824a4d080791dcb1da5d08070445f8289d2ab4

  • SHA256

    8b35310cfdcb3005ef130f75d38de2aba649ee7779e71cdd75152d9e45ae24c7

  • SHA512

    d704d48b68b99c1aa4c1a8478257d62f198ceffd65318e2e9d373bda9498b8125b7be50d7aeadc58a362ee9a9cb0954873621ec97ab3a31b6230e5169d83ecc3

  • SSDEEP

    3072:Rgb5+69X9ijxyCShvWuer0kwsc9T89f5BKqoC1:l69NijxyCShel48RLJ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c9ba3ab61635f2781f87473ffedbc591.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2332

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e64f9a3166205546af76bbc0672ac7fb

    SHA1

    0a9ff4ff9867be53383ed867dd252728ed1cb7f2

    SHA256

    93e16975b6f83ec83bc2a705ea2fbaccd812de089bf66b4531b464b30cea340e

    SHA512

    f99f02e306a940fa253b0533b7a2ca235268e79d00425008e50aab584c1c95bf31e9e070c9170e230f78f68eb50d7161faaf9494e6cfb849089869b2810543f5

    Download Submit