Overview

overview

3

Static

static

3

1494ddcd6c...8c.pdf

windows7-x64

1

1494ddcd6c...8c.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16/04/2024, 19:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1494ddcd6cbe9563bc5a8cc95d70f91221c9671d280c38a51bc020287e8d9c8c.pdf

  • Size

    305KB

  • MD5

    e8c70fd421df63c3a7a83f71bef7f444

  • SHA1

    cd0fc2f709cc08b9106e8f78e433454aa1fb114c

  • SHA256

    1494ddcd6cbe9563bc5a8cc95d70f91221c9671d280c38a51bc020287e8d9c8c

  • SHA512

    6cd8655339b39efa35beb6faaaa83cb672c7f224f0130b5b2b9257ead9fbda2e231892316ff907c5017b861aae6649f08d6bb3c1737c99d2612b04e3882b8359

  • SSDEEP

    6144:IYEAkTp1Mo4mr8SviHv7mpiSMKae73eofNDfyx1npRTP:IYErTpuorC7xSMK3fNepVP

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1494ddcd6cbe9563bc5a8cc95d70f91221c9671d280c38a51bc020287e8d9c8c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2060

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    cd37a62d61b467a1dc369ff5b11fc9dd

    SHA1

    5557f3275dc6d4055563510c44a3cc12de5fccdc

    SHA256

    a78c6195b0716f11e79009013f67d7229f4e86be6147923cc427113d812006de

    SHA512

    1c67cacccda0856d08fb298e3bfc44202f8970f82fc3557618b2fbad1f63d2c8f6f4ddeb40fef38dde2332d2a1b0ca495ea51581fa86be0765be833e9721d00a

    Download Submit