Overview

overview

3

Static

static

3

56de47af66...64.pdf

windows7-x64

1

56de47af66...64.pdf

windows10-2004-x64

Analysis

  • max time kernel
    119s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 16:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    56de47af661a9e96bdf54b9741e3d764.pdf

  • Size

    78KB

  • MD5

    56de47af661a9e96bdf54b9741e3d764

  • SHA1

    a77579a57e63fd9f3cc137b7ea28ed33bae797a3

  • SHA256

    4a2671489720f70148b780572e2667909d4530728789d3ad81c8b8171460496e

  • SHA512

    6ef0143e2fa45645428e058e0f71d1f75e193281d5554edf801823bee9c8972bea2794176d35ef6d6d1aa6073ade203f548417d4682786eb74dff9429e3b66e0

  • SSDEEP

    1536:zdHqwW/nYpcD/R8nuAitN7P9RgWP3mqWfkrRVgafqOWOpOaZvSsi1ee:ZHqN/YpcDR8DSNLngWfm5krrFyjaZLiJ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\56de47af661a9e96bdf54b9741e3d764.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2320

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0b87b7462afd6eb6e2184a13aef719eb

    SHA1

    5b35f107c80df16b584863bb5f0acc0f63a7d285

    SHA256

    a6ef7ac6f4462315bd9d478ef883e04278cf3922eddbd942bd86b7ef9c8f15c7

    SHA512

    b8d22ac8282490726a0bb2793a843ad99ab668bf97a9eecc4f2aa16f1b9257f795be7d27838f3721d6c38b92d77c3f88047b52e880819cfef5029c315efec6e6

    Download Submit