Overview

overview

3

Static

static

3

4c6204c366...91.pdf

windows7-x64

1

4c6204c366...91.pdf

windows10-2004-x64

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19-12-2023 15:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4c6204c3665749c47e309a29250b9791.pdf

  • Size

    86KB

  • MD5

    4c6204c3665749c47e309a29250b9791

  • SHA1

    f5c67e425e1ed3c1b803345692bdc0c0cfbcd92c

  • SHA256

    610ee76cb82aa02054e164178326af1cae8eafd416a6cfa47be419cfe2d3f510

  • SHA512

    2822503507082ce5ca9cca6d015a4252ca0d78447f4d6c77e7be6f7de6f5e1ccfc6f431cc8608691621765d6806ccba96e3df804e3853e26a2c9b6068f2702c9

  • SSDEEP

    1536:aOHlNML2uH3ReMiG2du52ZKFv9KW0w3EhJxKmAl8N9PaaGQcWSFrbm+AfmMmU45v:z6fgPdu54Qv9uxnMlASVVMmU4Fgmt

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4c6204c3665749c47e309a29250b9791.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2124

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    965b7156bfa670a7e1fcb4da85076b03

    SHA1

    6841a24dd345185a00ebbd2038c431ba853b6582

    SHA256

    988cbb657554f6501775f2c522d1dc34cdf426ce1c33609b9ed36408a05ee71c

    SHA512

    7b3f1b4414af3e1cd12233b6f52666d85e39b84b57061a2137162448c7a3a0c6653d9d4f5e2c266f171ff086ecd700c382506f0bb443526e1ecd698e61fd9d8a

    Download Submit