Overview

overview

1

Static

static

1

20cf078aef...a5.pdf

windows7-x64

1

20cf078aef...a5.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240319-en
  • resource tags

    arch:x64arch:x86image:win7-20240319-enlocale:en-usos:windows7-x64system
  • submitted
    25/03/2024, 17:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    20cf078aef568a14ea8f8136a8909274f864758d2052203bd574474999cbe7a5.pdf

  • Size

    3.7MB

  • MD5

    d199a3bcea6cf3e97479e3d0c47a32c6

  • SHA1

    183fddd3e70194fd3c64cafdd3e5d9afd54d8ff7

  • SHA256

    20cf078aef568a14ea8f8136a8909274f864758d2052203bd574474999cbe7a5

  • SHA512

    838dddc3b8b78e32ab7c7123bb94cfa1d4cdd0cafca419ba885fe2215fe4f5a692b99f879c3160e3249e28145e1bb128667bd3daa33493a622631792e8f6f44b

  • SSDEEP

    98304:JLoB8rBkoRkA7UXt78NWNK3fuj+U3l6DVCo5AXyxh2L:Zw8riPAS1mWNqfuaildyh2L

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\20cf078aef568a14ea8f8136a8909274f864758d2052203bd574474999cbe7a5.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1932

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    588fe7044dc71d78b7a869108077ed43

    SHA1

    ec282a2b4ef5643e645b966e40aba861d9b69ffb

    SHA256

    9c583c4e12b06cf1d01f5b47e984b15cc8f6559f5d242def5798df57b6c55297

    SHA512

    e20b4dd0ee89cb7eadbc6d701d7dd39989ae1ac3b035742ce52eaffa8f650c33abd609ab580c7fc513e55a1ba41b661c10307d84198bb4f95f7c657e7d30548b

    Download Submit