Overview

overview

3

Static

static

3

cd78a7f3f8...c1.pdf

windows7-x64

1

cd78a7f3f8...c1.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16/03/2024, 07:29

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    cd78a7f3f86f8391fa1c1303700dafc1.pdf

  • Size

    74KB

  • MD5

    cd78a7f3f86f8391fa1c1303700dafc1

  • SHA1

    fb441845479b210d1fc4da4dab0cc557b37c00db

  • SHA256

    3c4dd955e3f06e029c262971a584f9e3378a6d2cf7b5b51e9ae70349d579172e

  • SHA512

    15bdde0bda801458e823c93833a61985abcbb077cf02ada5e4e4a43e55eb02b8f2351251750780d5372d2347b550dcec61a46616ad9df00da44bc9adacdec148

  • SSDEEP

    1536:Dlzso8fAesUv5yqrZbU5fD85GpjOt0DoWX1OKGvjRR:BzPesUvdbEvpjOt0DP8Xbn

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\cd78a7f3f86f8391fa1c1303700dafc1.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2900

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          31ad6ad4a006ccf7735218d36693a0a8

          SHA1

          a1ae9d76c644a47a638abda7f405831e17b47d4d

          SHA256

          92f457220745bf6565976dffaba76eae67cd1dd54422d9b47e9b5209474991c2

          SHA512

          0d36ae6d0b2192885fe864d1cf4d6afd2b2bfab6fefdef2554f108b0986fe1bceb75c82041026b1dc2cfb912ba3f97bb83bc802abb881ac52c7a6ae565dfaf09

          Download Submit