Overview

overview

3

Static

static

3

dfbb117b5f...2b.pdf

windows7-x64

1

dfbb117b5f...2b.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26-03-2024 17:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dfbb117b5f80966721e34dea32d55a2b.pdf

  • Size

    35KB

  • MD5

    dfbb117b5f80966721e34dea32d55a2b

  • SHA1

    a9e4edaeff1d0f2f4c54e884f4c34e0c1e4f7db1

  • SHA256

    3c54388777ab60148bcc84c973689fd286cd49056081df90388310101866b5c6

  • SHA512

    9f5ff26f7bbbeaafe0e9aff54fee40627f8136381c179f914509c1ffdfc9cc4d7c7d784842243390c249215e4f8ca5dcb374bd84b2c01e22578e2c4b289afd4e

  • SSDEEP

    768:rdZ7JeIbMKKID9s1ebW5SGppVt9Cd+n9vvp01nUbLlekOzT/oLo6v:xdfMzGW5S8r9Cc9vvpqnUvlekOv/oLoC

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\dfbb117b5f80966721e34dea32d55a2b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2848

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    461679c22f8103e9893f7a6755e598d6

    SHA1

    3a9a5aa7c6e4de16197f5e73a91e92dcf7732cc6

    SHA256

    d3e960d56b54531531edbd0fe3a2b46c29e9d0aa407132bdd4d237e0f86b34c8

    SHA512

    9208195b9ee72f040aa76c5754e08195b4626345f0d2181bd6b9a0807f611a6473febdf1c0bdce246b2fe34b59129ef74b0790508ede7ed184c4f91b76b5f98b

    Download Submit