Overview

overview

3

Static

static

3

e08d60393e...68.pdf

windows7-x64

1

e08d60393e...68.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    27/03/2024, 02:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e08d60393e1ceb4d31eb3a16e63e5a68.pdf

  • Size

    35KB

  • MD5

    e08d60393e1ceb4d31eb3a16e63e5a68

  • SHA1

    dfebf034ac9a03dd377c178f1270b09acc33181a

  • SHA256

    68c3907f20bfc1f7ef38b2840291582916900ac1dfd8c0a206b0647c0b6b24c4

  • SHA512

    228fb5082c9005d91d840fc6874948f8c6074ba346fa04daab1c5a43a0c0f2164ab1c4813735c0083859f8d25882e3f515941bb93b37974b46ea49ac4cda2f87

  • SSDEEP

    768:nat7OcHQk8F2s51mevSb1/uYPCVYEziAKZscRcSnJkK:akcqZvSh/1PCVYvAvcaSnJkK

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e08d60393e1ceb4d31eb3a16e63e5a68.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3036

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    62eaa021305a0efac9ab37e5f53e0aca

    SHA1

    cadfc5b5bf7ed0221fa17cc6d7c7d6e3723ba46c

    SHA256

    8f41e418f2c2b6241ca4f487d886c9f287595011e134ea497407066ccc8eaf1b

    SHA512

    3749785ec339c6470a9d00465756a7e22f8403a9fbd026bcee78ac4cf54807ae16a12d0ef348d2592d2bc142d7b10c6e0a3367e352ebed35980c717add63067b

    Download Submit