Overview

overview

3

Static

static

3

de3e9a32ac...be.pdf

windows7-x64

1

de3e9a32ac...be.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    25/03/2024, 14:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    de3e9a32ac0e0fd7ecd79a0ae78762be.pdf

  • Size

    34KB

  • MD5

    de3e9a32ac0e0fd7ecd79a0ae78762be

  • SHA1

    7d68d923414fbf1462a4694a63ca57abf7c14ddf

  • SHA256

    ada4ff4b76f6afed61933fb6432abbc5fed1794cd9f16ec13c615cb91e51c107

  • SHA512

    78c9437c87dc2695e976fc7f54b6c7a8fd94c18192b3e761c9ad93af72c1bf32cc273851c5d7e65608d8473df4516c6134123ad3e8dd9f4d1dbd68509676b136

  • SSDEEP

    768:HkQLsL2SNQ0Z4izdczVAFNYSm60E+hzxRtr8:I2SP4WoAjY9XRtr8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\de3e9a32ac0e0fd7ecd79a0ae78762be.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2156

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8d11816a588987c8e936140f0b08502d

    SHA1

    f013e8080e4a79f73665d7306459bae5d69d475e

    SHA256

    98a7ec97bd2bf252d88204e3aa71abb9453c7822a486e778d0d0bc4a43758f6f

    SHA512

    0741aa423551753841ee5c99701add8b1bc048a83e9eb208780eb950b70493c2d65247b738e7df6f0495052f09847ffd19800d2b9944105a25d4dee4f261c4a0

    Download Submit