Overview

overview

3

Static

static

3

d38f106126...00.pdf

windows7-x64

1

d38f106126...00.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18-03-2024 12:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d38f1061266f15dab1b0eea15815a800.pdf

  • Size

    85KB

  • MD5

    d38f1061266f15dab1b0eea15815a800

  • SHA1

    7d1a4da1428f725ed20840871dfb969ca4282824

  • SHA256

    f3523a08982454c89c2876df7d1701c4ad5ac6874676346a4cac3972170491fd

  • SHA512

    573e2e283f2b439d0376863b141beb433530a0a8cef9043466240220b7ca1940ff7089400df0f0bdc0c8539985c1c1b256f212480c00b07e0df55e3d1ec641d7

  • SSDEEP

    1536:N/B7HkDfQbOEnReS8ZUoGLufXWg9T9WGpOKQywb28WUKFkvJiCp1+:P7efAoS8ZUoGLoXt2KQr2/kxi5

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d38f1061266f15dab1b0eea15815a800.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1740

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    961be1cffc56d1c82e01e2ebe1ab1661

    SHA1

    ac680de11e98e2058c1cf250735e980c2eed5594

    SHA256

    c71275ee1d18cbd4ee74f9d258f825faab3a7232670faba7fd0a93bf61af8150

    SHA512

    264443f85d4b1b7ccd0c558b85bbba439b078966102f4d7086ed958eb5afc07af257957f54fb438c18f7808643a811221be05d7df821a5709564bccdea225003

    Download Submit