Overview

overview

3

Static

static

3

6f60e0348b...8a.pdf

windows7-x64

1

6f60e0348b...8a.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 05:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6f60e0348bfd3436091c84732bcc308a.pdf

  • Size

    34KB

  • MD5

    6f60e0348bfd3436091c84732bcc308a

  • SHA1

    f9dcb53c918fd5c4fa78fde1f8870e4dc6f8283a

  • SHA256

    0b3ad65ca27922e16b868ffd46d40764bd9d29c4caaa5a19fb13d770b5483e38

  • SHA512

    d6a1b396264fb190bf6b493c516fb48ecdeb3d8c7332ef7b9967a32ff82dc3b25130e6c19a569a78dfb2e66c0ded88745583f812a88184f02424b599b9462126

  • SSDEEP

    384:ozbX7uJh+gh/pJqVsSodiX/t/5Bny55UzSqOTxdDvhS6BCUS2lIMUuiAL6dkVCUT:+7KDqVsdiPtxc/kUVdDvE6fl5iI6dsR

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6f60e0348bfd3436091c84732bcc308a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2204

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7faf3c0df7503b6cf49a1b274d5b2bea

    SHA1

    6d9976396ff9f110d58d35da4e469f37aca5ed0f

    SHA256

    fdaba6ca5ce60e93bba4cd151b38b7b760e0e03ec134b4b5e5c91486554ba9cc

    SHA512

    58b6a52bf13d492eff331ad1e4a8de97bd11193e7b9c81333b3ef5129e276a84ddba0134899e3eb11597d1a059c5059b7e7405a023d7ab23b6788ef83d24603d

    Download Submit