Overview

overview

3

Static

static

3

5a6ea0cc60...c2.pdf

windows7-x64

1

5a6ea0cc60...c2.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    138s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26-12-2023 06:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5a6ea0cc60901b6a660b63c26c126ec2.pdf

  • Size

    85KB

  • MD5

    5a6ea0cc60901b6a660b63c26c126ec2

  • SHA1

    f062c6e5c64a42f563936c744045d964071940d6

  • SHA256

    a910bbe22ff6eb3ed39f3c4b4c0e3739376f03f18170d8811edfae42a54fd338

  • SHA512

    11bf9869f9f956791f30c9ffd2bcfa127a362019dd624d810cb02e7858f440de76f27b3a4c0fa79edc75e29432cd42b55a396f9a092f320cfcc1e143b2ecf241

  • SSDEEP

    1536:sjXv/TibgHUqZtCmGJibpfCP7VmuYsobzoNwaSuB6P1ZWkNpOPaWs9yV8ZZcmY+:Uibg0qZ5bc7MuYsKoNRSuWCP/V8Ua

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5a6ea0cc60901b6a660b63c26c126ec2.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2496

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b5c65e8ce8b7474a4de9e2beb323d9a0

    SHA1

    4424613b63c3fe5dd77e5eab7b3c720ebed18b9b

    SHA256

    edb236a5603cd7290508a86cd2ec27b26d6283ab538570912ab75a13de7a49c4

    SHA512

    ab43700ffd4aa446b477df008664a1f475c53a5eb3e490e4ec13aa985d76b128a8ae725657c6c7be3f36ef76775228c12fefb4c03da79ae2d70c249a868666c1

    Download Submit