Overview

overview

3

Static

static

3

d6cd249854...ad.pdf

windows7-x64

1

d6cd249854...ad.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22-12-2023 15:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d6cd2498542926627d5ca91ed296c1ad.pdf

  • Size

    109KB

  • MD5

    d6cd2498542926627d5ca91ed296c1ad

  • SHA1

    7580d399a81e5180175b58a7ff5115a69414228e

  • SHA256

    e16c6924f131c9e2317e689b8c20d4ea357935eb4e035899c0a9004e8cd2f1d9

  • SHA512

    523b40b0c54542e216c6bbaa828d5c3483091c7d9ea7058cb84c89a8d8fc6b01ebe5f154b66227e82f26eea7ac21831cc0ddbd85f9e2c5829f8579d409e380fb

  • SSDEEP

    1536:4clYvRw8najE+SW/3rU/pPlX21AzkgwSmYn9RGUmzPj8hML/Fwzf3UExWhMaoLGj:XlIsEcQpc+m+9jyoh0FwbEEzXY

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d6cd2498542926627d5ca91ed296c1ad.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3052

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    60cd62208d6beda5fc7ee7b521f591aa

    SHA1

    740117b63ab93f2e79a218c1f105d356beae19f7

    SHA256

    053beda083b9d3eb1a48c97512b49ff5195e929686aa30d54e1cdedb2fff9a00

    SHA512

    28441b8fab259a227950f6c496b69eeb83dc3d02f9ab11a90b02cb7cf4c350f43c18759a9fc9362a70b57b6e780dcfb2e0f6b6863bd348258e3f1413c81ff2be

    Download Submit