Overview

overview

3

Static

static

3

ddfa4c2d01...de.pdf

windows7-x64

1

ddfa4c2d01...de.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    25-03-2024 12:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ddfa4c2d01d36d1c789714e0caee97de.pdf

  • Size

    95KB

  • MD5

    ddfa4c2d01d36d1c789714e0caee97de

  • SHA1

    33d00a1bd6bf906d68870c4147d364dc541570e2

  • SHA256

    62ddd995fb006ed7fe2d911e8755ae71a5d1f049e54290bc3bc05f4b9b0672db

  • SHA512

    5217087bc533aeff82ea1475796af64afee8afda0c34a1c51a0949f3f3780be57a2f69a5f0cff8915b51ebe1cffbff57c3aea20680315db8adb9b47b9befe148

  • SSDEEP

    1536:PKH7Ab4SC8i1zRhXOO6NuKOaz42afE1vnIlahi9ixABtu/ZWapOtQHWmMQvi56H:iA2vt56Nubaz42afE1qaTJ2tQjviQ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ddfa4c2d01d36d1c789714e0caee97de.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2240

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2956bb4888434c661bcef399af0b074d

    SHA1

    048507d551e58662d337fc5b153f20bcaa0971a9

    SHA256

    1f97dfd1448571d2b79f92b0c362a361115ed40a37d8967c1ad786e5d56cb84b

    SHA512

    f5cb412016d4fc28b22ee331d8d5f03ff15987d64d782638464f9aaf118bfaf2bdeb45f02d2d5991e08044629a933d2d18a8d1ab28cc085a705e722a9eb6aad3

    Download Submit