Overview

overview

6

Static

static

6

6821d1297b...0d.pdf

windows7-x64

1

6821d1297b...0d.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 04:51

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    6821d1297b75bd61ddf06c2b8ec1c40d.pdf

  • Size

    55KB

  • MD5

    6821d1297b75bd61ddf06c2b8ec1c40d

  • SHA1

    76a84dd8542f51e78ca1c51bd1f7a6921c53b35e

  • SHA256

    4ccc5c632189a1a6a8e7151d21738c13b5e1cd503439332796832ff6aced26d8

  • SHA512

    1f876c69b8f9c67fb2c7d9213c1b2f504eb0b26221217146927d8d622d5f79070e325aca56e725adcc3ea9cf1299b00e2e83367f63502825224c6f7aea677c62

  • SSDEEP

    1536:Pzm6XCJBI1ael3R+SwMkJcmd3dPnLN3Xa1TXix:nX6AV3R0/cm1xnLNH8Tyx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6821d1297b75bd61ddf06c2b8ec1c40d.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2104

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          1KB

          MD5

          c3330ce606efe9ba2ce95873319915ae

          SHA1

          9fe3ee97a1ec96e802f9b459d600db7f7c4294ea

          SHA256

          3890fba718e4526213f06785244784f62b5dc3b92f9c410728e07ae76fa00c2b

          SHA512

          cc3f743a69e9e3bea81f881d0992b90d49b82f0606a758b56e6d42ea907b99e96dae4569e534f8c6aab17bb7339b63db056e067fd425ac5a719ff2bf66d9d1d1

          Download Submit