Overview

overview

3

Static

static

3

e020b5b2c6...6a.pdf

windows7-x64

1

e020b5b2c6...6a.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26/03/2024, 21:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e020b5b2c69d31166056816dde81df6a.pdf

  • Size

    70KB

  • MD5

    e020b5b2c69d31166056816dde81df6a

  • SHA1

    b4eae7f34406d43880e0e98e654de46a447a4da5

  • SHA256

    fcbcf1101fcf16eac236000498d9deac46a029e5f9214505f552e76784535bfe

  • SHA512

    29bd3c6887ce1db801b2018ecfa9beaf3ffc531d5159ddd3b94559709258ce60029d3e29f94dc6dea0c0836143d240ecfa579a15612cc6a9574af3e238fb3dc6

  • SSDEEP

    1536:Klp2h6Xse33tN6NayO3gX5ovkwVhrP25rDNB2unkiAwiwiZ0:hUXse3jq2cHKP25Pf3nTIP2

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e020b5b2c69d31166056816dde81df6a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1696

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e07140d2a80531e59f26cfa4e9feb8bd

    SHA1

    dca802a3b342435a35ab99720b95f86c2533df22

    SHA256

    508d61f0b2a53c93f9f12f49b22643657bf7a8e97488979506fa49507cc0363e

    SHA512

    ecc867624e62196c83c7d1cab14a7063e78c8beb5e412191394643724c0e4dce24b7ef8aaf38e1dec9e4a7f93ae70a364bcab9c2e5d6289d0486296b08bd52ae

    Download Submit