Overview

overview

3

Static

static

3

d679d9772b...69.pdf

windows7-x64

1

d679d9772b...69.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    19/03/2024, 15:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d679d9772b4a0f126ea110363ed6e869.pdf

  • Size

    90KB

  • MD5

    d679d9772b4a0f126ea110363ed6e869

  • SHA1

    b8c64b399a1f40ef2731605da5d1402ff29bb1c1

  • SHA256

    7b6346e5af3a693cf19ec25242ea0d4461effe4bdcdbd07d6c48cab5ea118ca7

  • SHA512

    c6b90f4ffb7b44aa8221ebc9009cc6809b4af2287970b6f405d27155074e4a060bdb64bbd8aeabdba14396a45e744fa3cba00e5297ab4fb01c7f551077e875e9

  • SSDEEP

    1536:0f1EhwBzJF29ibgGFL2tZIDuiLmjwPCBjVmhoWxApOGlBWhaUIv+yW+XHWONe:R+zJFHgGFL2DguMmaCBJmhh3GlOapGEs

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d679d9772b4a0f126ea110363ed6e869.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2276

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e346b0bdea902cf53eb82bdbce5fe039

    SHA1

    942876f6b96c993bf73ac4a50c5944b7ca1de780

    SHA256

    2948b5360c78d6e4b815011e782c8e7e1ecb79b19eb187ca40e8fc7978eb2ed9

    SHA512

    221ba2e6ddcef0b66ea27134d1b8e4fae27ba1b22b4e742c6a43c6c14f034993bf9b3ea4cb0d1e704733a671fe93b5663d6488c81b27e292b993f2c1349cd6c4

    Download Submit