Overview

overview

3

Static

static

3

6a3a5f5886...d3.pdf

windows7-x64

1

6a3a5f5886...d3.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 04:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6a3a5f5886763a11f3c933855206c6d3.pdf

  • Size

    35KB

  • MD5

    6a3a5f5886763a11f3c933855206c6d3

  • SHA1

    c8a85ba98669ba59deff54bce2f9fac13ad1e91a

  • SHA256

    829d7f6722efcf86fcb984ef2fdded5fedd13b9430d9e0b78835f7791b10ebf1

  • SHA512

    470501d2b85daee48d8255e48a065910854ea445c8b2dbcb88298b4693369f54a0b131a88e572c4443294ab0c438c02b8cae89a45f041fd30f72acf93eed9bf2

  • SSDEEP

    768:GKOS2yHfd+9iMVfros+0QfCj5T/m3316h3Ti7Iv2+tuI3cC6l9QHUcXtI:Gc+8AfM08Cdb41x7I++tuqcC6SUcXtI

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6a3a5f5886763a11f3c933855206c6d3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2960

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    53d07e40601cdda92aaa31b191b4b548

    SHA1

    e2a4e0e1f0f3302e8f653389d5a602ebffdced6a

    SHA256

    095696fbf4f3dfae9d23826169de5083a0caf9882ffdbacf51999171600c595c

    SHA512

    3c838d535199b71e91551d6c1528f10eb39ffc74e9f027f7faad358c006cb572e7a2d1dab630632aceaa56990c6288c4b358933ce2ad7ce1cd5da5b8b9c8cde4

    Download Submit