Overview

overview

1

Static

static

1

954a78b061...d8.pdf

windows7-x64

1

954a78b061...d8.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/03/2024, 23:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    954a78b061f6af856025ccda5863e9780e2f9679a258234f9ac36d04c7162fd8.pdf

  • Size

    484KB

  • MD5

    152f9be2e63794d44e4487f6bfb7f496

  • SHA1

    ee02fed217a99e2350fc24fd0151533058924df4

  • SHA256

    954a78b061f6af856025ccda5863e9780e2f9679a258234f9ac36d04c7162fd8

  • SHA512

    c4bb34a49fee5b136b444779bb577a3f6c3f2ec96dc789388b16f25ad83293f8038f901ddb90ac75f04dcde1c7f86159cdfa378ec04a80db6b72f3a58eee1990

  • SSDEEP

    12288:r46oj/8+7gUX23hqzl/hMGtoc/8z8hZjEJbNCM7zWrW:r46k/8+fWhCl/hjVQJbNpz1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\954a78b061f6af856025ccda5863e9780e2f9679a258234f9ac36d04c7162fd8.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2020

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    fc7281fe3c5ea14eeb8f7b5da8b566dc

    SHA1

    0edc2d4304388403681dbce8be10137150144e0e

    SHA256

    04840220520ef6a53987ec05c8749f190bacd2f5c7a72b180449784c9198d48f

    SHA512

    6517d89751e702313313e6eadc2dcfe75f23eeec303ddf5cfa6f391216195d3f4ed50be5d99f8a06a9b463f1101d666c0a29c3e120841ee62f3adf3704854d38

    Download Submit