Overview

overview

3

Static

static

3

S24-0880.pdf

windows7-x64

1

S24-0880.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    05/07/2024, 14:04

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    S24-0880.pdf

  • Size

    95KB

  • MD5

    ecb35f16f05ce8eead2d17b0469246b6

  • SHA1

    50af7e03f157a44d3e61157e2cf23f87ef853eef

  • SHA256

    2cbda308a89d83a421ed42a7a55b4e2a84ba1c70ee550db0f0988dbc02f65a9a

  • SHA512

    b1c6d07a79f07f14eaeb8bf233e73f8354466b6d2137715a9494464acca9527d05a9c735d877ddf22e32a960f09fc1dd749397e629817fe31ae614ea19da4e07

  • SSDEEP

    1536:wSZsM+atqzYFfJEbFeUseLEDv8Gv8th3M2Jg48taA0MQOPoCGG:yvQEsv8Gkth3/648ta/yoCV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\S24-0880.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2144

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          572b593e6894e701c377bc0b9959eb91

          SHA1

          b7d695cba5f8c590f0ffcaf42963bcb16af14577

          SHA256

          8665e9088ab8c96727fca4361f9fab08d9f27a038121de73b3aa0bb01e36b30f

          SHA512

          632cbd3feb1b27b99f10f97120960aa27c0c18c177b6cc7a29f322c24e15a347a1e83c9b9953ef12a417813c37ed7e10613089235dc8171389e1626fd59bfb39

          Download Submit