Overview

overview

3

Static

static

3

ca967de34d...66.pdf

windows7-x64

1

ca967de34d...66.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15/03/2024, 05:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ca967de34d36b419ae3aeba9873e1766.pdf

  • Size

    72KB

  • MD5

    ca967de34d36b419ae3aeba9873e1766

  • SHA1

    78d909723a37f20a33b64eac7975c9a67460b6e2

  • SHA256

    a6adaf333807d189a1b0494113fe9cff571e40df6f515acb4635288bf08ef24a

  • SHA512

    ac78c63c3ecd6f00fff6c1a33747462b4b7a0442f09b3ea1578a64502d65307e392e6267a4544dc17552315432e5d3db7b991c815ab0db89cd3be6bc20b065da

  • SSDEEP

    1536:cO3W+sJ7U5iLoPIxQX52k2yDxJJBBzz8pLRCqRB73cc8uL:JsJ7EUQsk28ldz2RNl3ccn

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ca967de34d36b419ae3aeba9873e1766.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2948

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4cc14e36f7cdbab6b6af3d392454bf0a

    SHA1

    c1d9632cee262b0093c33acbf85d1f8566f8f246

    SHA256

    744d9ff60397889916dab801faab62f008b157de4d7f9e71d94df79d38b35541

    SHA512

    13aa8b64ec03b9899174cc1b1eb3b0c106c10ecaf673d42ebc70bcf89d3b97ff5caa7083a1a51dc3faf045895739b3e77fb9b4fa1d27507f29c84573f281aff8

    Download Submit