Overview

overview

3

Static

static

3

cdfd16888a...76.pdf

windows7-x64

1

cdfd16888a...76.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16-03-2024 11:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cdfd16888a7223f14298ee00d9e23e76.pdf

  • Size

    94KB

  • MD5

    cdfd16888a7223f14298ee00d9e23e76

  • SHA1

    93b7dff4f2232094f647d7e463883e0b2813a3c1

  • SHA256

    01b842e20c945c2c3ce59f9e4b05fe7db4518253c62084a1c656b1d2785a5a24

  • SHA512

    4a8b851250b30369b26b8c2dada4383a033095c9fb11869352985ecaa7fc4990fc12860a5ad96bf5cf129647367c94b227c6c139042df2b525487ad0d71b8ab5

  • SSDEEP

    1536:FfPj8Sq68Y8JYASnFtEOQHdoYhId/e0Jrkl0dWoNNi9GB7SyaYGNg5IZ+lH8/H4h:J8g8Y8JYASnFtoHKYhIZe0JrS0N6inaA

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\cdfd16888a7223f14298ee00d9e23e76.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2016

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    26e499ace9a05caeee4d20c4fb286f31

    SHA1

    b79817fc345dab51afba001bff15c72541e6052c

    SHA256

    5152eb2c806b3f073df9668354499e3dade5f4fecab823f5e7844e7d933d6de5

    SHA512

    79101341e799d37b2765786fa05ed25437adca6dd6fad465404dfd43fa2d983bba8b29c535a5331af47912a3d6d0cdb9632400fa97a8db7450aa71390b140998

    Download Submit