Overview

overview

3

Static

static

3

5ce6c1e177...27.pdf

windows7-x64

1

5ce6c1e177...27.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22-12-2023 03:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5ce6c1e17722c281059a58d469074927.pdf

  • Size

    88KB

  • MD5

    5ce6c1e17722c281059a58d469074927

  • SHA1

    d2e19b3d217fd6ac3d8cce9177723c65582bbe3f

  • SHA256

    b7026b8471262b9a5c61b8f5adce31de179fbda315fee25162341d8b7457d7fe

  • SHA512

    7c9b41b2b0c7f94b553859b698c93536c35c4e25b96cd0e455220347e2ef20389d40bd9503e9b8f59b2ba82b0337e07a4e69f992bc5c03000960fc1b61816bf3

  • SSDEEP

    1536:tD243ksbULTXSXBKgJrTIbVy3JaA0OYtQ07s5+bLIfuYSNfEPUvsro8o:g7sgLTXSXhJ38Ewhtf7s5MsfuYSVMUvj

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5ce6c1e17722c281059a58d469074927.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1396

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2b7c27e2ede9524715ab51e47916aab9

    SHA1

    0d2463bc8b9e739b4c41bf0e042ae4cc604bf619

    SHA256

    11f3132ee1908561188d88db4bf08faf7279d67fec9033888f4dec17454fcffd

    SHA512

    848785c45cb5cdcdb7d26ab92b5e0ea6bf7e45ca8d99b88c9c79a61d980a360d2bda7f001853595dbdc15b12b9428694f9f9dd5e0c7cdb938a5b8cb85be4dc54

    Download Submit