Overview

overview

3

Static

static

3

inv_12686649_70.pdf

windows7-x64

1

inv_12686649_70.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    11-06-2024 18:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    inv_12686649_70.pdf

  • Size

    146KB

  • MD5

    c530440454e8cbcf2547729be647e187

  • SHA1

    918f740301faf000066da5594d84282c96a9d28c

  • SHA256

    d0535af8ed0dbc2c075ed24a0f40e4aff0f798e287d3b2aa7623d155fbe3d421

  • SHA512

    060c874b2d8f51844fb526cef4e07f00036b3741ccb28779d67fce940c80d6d74c8bc994e325b7ec44e48f371c972becf7302110ce8cbc59ddd21a79f952a195

  • SSDEEP

    3072:EwxrC5R0JjZe+xDSjmwR8WKDZDzE4Gv/icER:bxrC5KJjZZYmFl9zETZER

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\inv_12686649_70.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1548

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4b86aa00068fee7a1dea30592d2332ff

    SHA1

    1cd59beaf7f8818354bff75c7f89b108e87a9c13

    SHA256

    550061ae5b8ba83aa14240500d6fb23433da79299e2f5e37db3c75ff2fbdd6eb

    SHA512

    0f37cc914f7311223e7f2d68de43fd016219843732a3e328ac19746c94c57ed054d9e3a3566f897f62afcc7c17d4e826bfb4848c377d374d07c50c85bb85bc66

    Download Submit