Overview

overview

3

Static

static

3

1564eef58a...fc.pdf

windows7-x64

1

1564eef58a...fc.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19-12-2023 11:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1564eef58a94d71e74d11c2ec67f21fc.pdf

  • Size

    74KB

  • MD5

    1564eef58a94d71e74d11c2ec67f21fc

  • SHA1

    5de53e78a3b9ba3ef0d07cf8347e906d69d9b002

  • SHA256

    165f6fac0d54ff566b26e3b34d826d55da82bfc0b0ac3ff15d1592a55f02a57d

  • SHA512

    83da526903d80819422ef3bb2f0d4ab5ed745cced42f02f78d1d5e90820c4505497a4d196a229fa08af1530131be75f4c8a79640d45636136a84770518e5ec43

  • SSDEEP

    1536:kxEIcmN7JSwD/c1eM8RKZdWzLzwQX+WkNpOP8IsnxiiCWd/xtmBPmxwC:aExUt0eM8jLzwcPS8iPZkE

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1564eef58a94d71e74d11c2ec67f21fc.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2892

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1fe4e0d93b6796b146ca9c777959d32b

    SHA1

    6c9c90048e348c338f1010b8b5a45b1fd4191764

    SHA256

    6f6d54b6e7ac5db97d1f12e59e9be07ef3a7832840dc51dd09ae890c9b8eec84

    SHA512

    b6f062c4fc73da4aad32c5e86ac1698d744eebc7d511a7e7afcc6ae187dee552fd01510f340cd2a1d902a96fc70632159ac7d8f76273f8ab1f59b6e3b2b38b22

    Download Submit