Overview

overview

4

Static

static

4

6266455.pdf

windows7-x64

1

6266455.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    330s
  • max time network
    33s
  • platform
    windows7_x64
  • resource
    win7-20230703-en
  • resource tags

    arch:x64arch:x86image:win7-20230703-enlocale:en-usos:windows7-x64system
  • submitted
    12/07/2023, 05:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6266455.pdf

  • Size

    101KB

  • MD5

    fc2c0e146a865d1d8405a98b08db8c78

  • SHA1

    2d08614faf0e963ba495db70003e5cecfc96f445

  • SHA256

    383c1e4cbedd6af10c43754b0b95cc041895a29e4533996f673a2e7bffcee201

  • SHA512

    38e24dc5cfb55f8923f032cd44049a481a3429fdb61e8a9b38ed3b3aedfd6a7a99ab7c320e37873e42fc6d798d329e546becc4a0cbe59b61469a8717aca9d754

  • SSDEEP

    1536:azm0nUqm+zQgOd1Z4pvSUI6qmUoMt8CFF4TS9c2H1DXncxEmOe2cTIg56:pkUq0H0vSpDt8G4TS93ZSbTw

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6266455.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2368

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    59daa3409f3485032fa2d305d16f3696

    SHA1

    586d7fed1c217ee48b04c498e5a1912834ba3e8b

    SHA256

    af3fd50767b03d530ae45a573e464dced06d7053e23cd2bb85d4fb0e83a3c7e9

    SHA512

    837acb16140f86bbe19583301a40fa4dd93b9298f8618c9d157c440de30300c042248383d4a43f4fb5c5e02836a39b256e4195cad3a62b0a7d03d323881a7f06

    Download Submit