Overview

overview

3

Static

static

3

df56823cda...99.pdf

windows7-x64

1

df56823cda...99.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240319-en
  • resource tags

    arch:x64arch:x86image:win7-20240319-enlocale:en-usos:windows7-x64system
  • submitted
    26/03/2024, 14:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    df56823cda8ca3cb485480f5b5ce9a99.pdf

  • Size

    34KB

  • MD5

    df56823cda8ca3cb485480f5b5ce9a99

  • SHA1

    19914e661cbdaad6bac4ccaabe868fbf452fe351

  • SHA256

    17057949bf6d1178722b17fb99ad3ee633498ebbe6a4090c9cb0f4fd84b38a05

  • SHA512

    394516b246f3078c300b64cc1e70874f9dacef39e20a4842d78d79b02accaf0a1e89d833317bdc6d93c21c114b586c09d4350b44c9486eefe520ecb6388061f3

  • SSDEEP

    768:Q7egN6HHGtdHS2da+w/c9eQvlzd7vanCuGheZ9kzqcq9J3WI:53mtdxdLEcvaEWkzq1J3WI

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\df56823cda8ca3cb485480f5b5ce9a99.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2144

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7f0b9862e3d68a0378d751507beb46fa

    SHA1

    bcb897d3e9b424efdd8ff19b441defe0867dadde

    SHA256

    efa92309867787265cbf61915c92689cd68a2caef1cbf37114b4a29bab38905e

    SHA512

    c400864b84e3937840759eff0c763b1ce2e08aed37ba655ad6f9a3ccc5d47b8edcbe297df0017d78d42dc5845e029294d240dc48f975cd03642e6b01b6503594

    Download Submit