Overview

overview

1

Static

static

1

FDESRWF__124560.pdf

windows7-x64

1

FDESRWF__124560.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    21s
  • max time network
    16s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    29-04-2024 06:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    FDESRWF__124560.pdf

  • Size

    149KB

  • MD5

    83596f84e20433329822c78fcc3bab56

  • SHA1

    c0d8b39ce664bef63848e5d500df0bf6620ff6ee

  • SHA256

    954643cba7f4fcde2e653d19223f0679fc9422dac59113b50120116b50aaee31

  • SHA512

    94c3bcdfb1c42d7c078b3d9d31ba0559201fc92500b528c5a95c02eefbc73d4110641acd3e5f79df15376c99202bef8eff90c23e5e2817645b88ae296266eb89

  • SSDEEP

    3072:VlNkhX37RlXUAP03JeCbWm14rmHO962Zy3qlWR136E9U:VlW3v03JZ52mHO91yz/qcU

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\FDESRWF__124560.pdf"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1636

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0202a7872301b69f13f5c76336cf4065

    SHA1

    5c62d938c1e032c275cc380f6a21aa5529a58d86

    SHA256

    efd1579aa88c5d1f7803bbf2765a5055f1bd0c3e29a13057a1456901dc19d992

    SHA512

    cc301d636f5cd11a4c219a9a081946462794560e382a283d057c13d58abd8612759dabbed959a09895cc67f2d6c902d6b2a0cdabb6de3b1cc69f8377961b89c1

    Download Submit