Overview

overview

4

Static

static

4

4ebccd65c9...15.pdf

windows7-x64

1

4ebccd65c9...15.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    25/03/2024, 12:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4ebccd65c93119ac627715a4095cb157ef789aab104f5f4eef394af035e3fe15.pdf

  • Size

    1.3MB

  • MD5

    b185dc60734383468a02b34266fe642b

  • SHA1

    ed1c727384018e97aaf7090a05cc864c1022400f

  • SHA256

    4ebccd65c93119ac627715a4095cb157ef789aab104f5f4eef394af035e3fe15

  • SHA512

    4c4f517b7b1690fa721fbecafb9c8ec9139ac898d1395ea6dfc1fa6803b3a2b879c3aa61dfdaf40fed791237db88be22cb5d184bf1f86f35d47c161e88e48b0b

  • SSDEEP

    24576:gszTXZdYeyquTiFIbHyHmmbID1XtKYQHB2jCWPKYGC6n111Dl3GZLt9tapVliR6M:gsfJdYeVQoD6xtKYQh2jCtLCUl34LtIg

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4ebccd65c93119ac627715a4095cb157ef789aab104f5f4eef394af035e3fe15.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2868

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    501dd74b12a14bc0c44f0ca2cc92fe2d

    SHA1

    d6084ecea8388ec3df145f6afeed395dc8484066

    SHA256

    74c2535dc6d29224f1d8f2f93e23a45c08e13e6d9ae98641fe2b7c59a672c801

    SHA512

    6be5aab67929aa0ff1bfe27bbf7193016af101b799ab54ddcef22476e17ea15e4e22b25184c0e8cb00590ebd480bf3260e35259e0a7417442ee9ec89d10cae9b

    Download Submit