Overview

overview

3

Static

static

3

d6f8770a3f...f3.pdf

windows7-x64

1

d6f8770a3f...f3.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19/03/2024, 19:47

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    d6f8770a3ffca132fdba161709436ef3.pdf

  • Size

    33KB

  • MD5

    d6f8770a3ffca132fdba161709436ef3

  • SHA1

    9c3e6bb9d13f9d619891c6282249ce0d61048975

  • SHA256

    0c77adfe19b01313bab5f9b2aa30b35b84f0b4d7e337c6022150e3e12cc8d920

  • SHA512

    5df74dd8774840070c2013c2d77be19fd95251eacfd375dd63764129617bd40ff571f6ccb1d703be9f76ebe8d141485279582766c1a5a6696d177e08817ff9af

  • SSDEEP

    768:yO3wqS8BXVnlcssBMjLEM0Sl/QNxMZ3GX6k25Lc:5AvCXRlqQQNx3635Lc

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d6f8770a3ffca132fdba161709436ef3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1808

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          4fee1d101aa3ced1a897e34483ce11b9

          SHA1

          fd976d661bc37e407dada5f581d6a15337b58ac8

          SHA256

          400eaafea64ff4ab3cc204f072ba52b06285f65da4e160ea74482c919d1a0e76

          SHA512

          56115ecbd82a1f89411d39e04c9f2d88dc182b6c8f84542561f9b6beababf69099c45afa4900ef8d9ee831b222adfc470f67f04e68c9cf2c53ed1949720063cc

          Download Submit