Overview

overview

3

Static

static

3

d55945ab34...e8.pdf

windows7-x64

1

d55945ab34...e8.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    19/03/2024, 05:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d55945ab345da21aeb55591a540de6e8.pdf

  • Size

    97KB

  • MD5

    d55945ab345da21aeb55591a540de6e8

  • SHA1

    211c853d4c118fa5355a4b0bf90366b74caf1ed5

  • SHA256

    1a3239cb52e849290b8f9dd221b7206127475d49546a68881e028ed9cdca3334

  • SHA512

    3ff96aa8760be749f7f6ee88a3cff7320b94ebde6a7f172d237bb3d3b442db143d36f856ae7457441bb524e60c89253faba662a6844cce8d7026d6e2c271df6f

  • SSDEEP

    1536:YG7/sIGf/ahs3fSSwEuzjXwXJjOgR5Sia+Ph4j0v0+xCPQHIqPPf6+HX79246Aj4:b70Pf/1y7zk7S2jxLhBHXB246AjRq

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d55945ab345da21aeb55591a540de6e8.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2852

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0cc05f55afe2eaf723af52608f207186

    SHA1

    3fc09ae856758fda25ada34d02b07d6e5892d580

    SHA256

    f49445a0608fea1523b35f181d1afb5863e79af21edf7e6c86c1a6a97fc910c7

    SHA512

    c963cd57bd3599d4e9e89a16e86de1fc7f7576b0273548765251423ba98bdaa7cff3b74226f6272b3e144df3c9d9f7425a55ccea0d0d7c0ce10dcf77838c1035

    Download Submit