Overview

overview

3

Static

static

3

ca81667af0...40.pdf

windows7-x64

1

ca81667af0...40.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15/03/2024, 04:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ca81667af0ad5289ab3c4ea96c810940.pdf

  • Size

    34KB

  • MD5

    ca81667af0ad5289ab3c4ea96c810940

  • SHA1

    086880f20e410e6b86ef74f0dd1d94fbc1f92c10

  • SHA256

    2c71eabca77d24d57206c9dd15afb8936a628f05abff12ac3fc1e58b5c6f2904

  • SHA512

    c9dfe38bc7f7bc5469d6db96dd36cb7fbb17ad3f673b45b004d128ee92eedf331d882b9fed6ef09b6e454e7dc5cbb6f9e22d4f78a0494daf9de36ba46880ffa5

  • SSDEEP

    768:KckJRnJUjxsCke1zxAEkQu8UYRvxgxCbrllE92Ev:jkJByVzxA4+2vxg9QEv

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ca81667af0ad5289ab3c4ea96c810940.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2708

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3ea04151f91aa1c8a64d4186ee68ae0a

    SHA1

    eec96ef45efa368196e32af3ef9a043985d7d08f

    SHA256

    c4acc96fe6d26b756b8007236b0a09f00682622204844243397138735c2214e5

    SHA512

    6482caa7fe26538b52e9058fa144dcdecf2c8fb79e6d369531e951c819f16a81fdfb2d549292687bf83d5f86e9a406ab3d038395c60c463d214927acfff287fb

    Download Submit