Overview

overview

3

Static

static

3

cb1df3cdeb...c7.pdf

windows7-x64

1

cb1df3cdeb...c7.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    15/03/2024, 09:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cb1df3cdebc44fd781b9dea5b83575c7.pdf

  • Size

    78KB

  • MD5

    cb1df3cdebc44fd781b9dea5b83575c7

  • SHA1

    2931ff1456ce27a348df714e785c04928b7a58db

  • SHA256

    faa18d0868572df4a779c87655ad977b076318228e911e75279e3bb40ef6c40a

  • SHA512

    934ef002040697d4b0ee5d18963d3877792556e1aebc70950c83268d232df8315f184540e524872ce18dd02672a9ad65c7e0088db8983c197367bf415de1c7c6

  • SSDEEP

    1536:MceiwHetdXLecUZC5S8/3eXzL6N/5VaNY0Ho6OYk2eo:UktdXKcs8GX/6/VUY0Ho6ONk

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\cb1df3cdebc44fd781b9dea5b83575c7.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3060

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    692e6da35aaa7e1f2f3bd1ed0e33a12f

    SHA1

    c1e1975451094f621e536d1c3be01d912b16d436

    SHA256

    bab0f8a30428c808c43623f92ea33c32e296514ece48c7bf887c935b169417c4

    SHA512

    683b9849a976f22e69a00ac874c4a8a242a1bf0c1fec4f5589a210afd01dce85558dbbb292641bf8a4840d03fe7756098e143bd5c9d9be2e1e03bc860ed93800

    Download Submit