Overview

overview

3

Static

static

3

5716cb25bb...99.pdf

windows7-x64

1

5716cb25bb...99.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 02:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5716cb25bb5fdbd7978bef37ddc1fe99.pdf

  • Size

    34KB

  • MD5

    5716cb25bb5fdbd7978bef37ddc1fe99

  • SHA1

    4ed0dc016c20ca2e3ea83b7b20d03426f2cb9555

  • SHA256

    3ea0d739b156a5cf4c22ae87c30f99400bccbdd08c0e71ea98f5b2838b3d8f5b

  • SHA512

    2e7e94f276cb730c95c7327f634813db874e8f96627e18d6e7a4b45771426121163128b59ae0e2053cc70c59d7b159e9e05b98fec171734385036613b7c40b70

  • SSDEEP

    768:347Z1Dc5+EoLyq1ad9Itn1pJmdC2SDnJDjzeZTQnoZ724o6SA1dfolr7sxft+jD:8Pn1pJmMmZTT724bSAzodgxkjD

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5716cb25bb5fdbd7978bef37ddc1fe99.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2648

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    daba29577e568bde66d7151da223f1b1

    SHA1

    121e67029dfb930b4870de8ab8d3b02fa046e10b

    SHA256

    f58a2117f3eacd69c47893184136b016ffeb36f087ee231d490bc53eb9c25214

    SHA512

    dff28d0af9f4557b60403a8c4b2cddc48432fde285bca7f56615b43ff5c3080cc1057dcca386c2435ee76a6f508b65ccab9bc3d8c03177a5b6f3eb19544e98af

    Download Submit