Overview

overview

3

Static

static

3

66398350f0...6e.pdf

windows7-x64

1

66398350f0...6e.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    26/12/2023, 10:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    66398350f087766c1eac54519f241e6e.pdf

  • Size

    73KB

  • MD5

    66398350f087766c1eac54519f241e6e

  • SHA1

    608279e57408cdf54d10855279339e78ba9e5d23

  • SHA256

    3951c7af5684239d4a78de6befb2e42afc0f12547174d64f9de281a83f088695

  • SHA512

    dd16a95e924b5533edca88e3c9d67aabe9188248e6c53f45c2434f3bd1ff73c8e48e2f3be17ea9507868705010abce5c4d8d26d315a864374adc9bd36582a2b0

  • SSDEEP

    1536:g5dKCRF2dz4RUA5RKpZTqt5AVkJ91AoNUSPON9xjjhTnPBG7:gQCH2d6UAR+NqtiqJ9NU5tpTPB+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\66398350f087766c1eac54519f241e6e.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1736

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    856e8b562d12e9956d52ebda9bbfb8a3

    SHA1

    f4a161e67e5f7107d62075d87028c1fc7885b552

    SHA256

    4a40274db44ef2b82945c8e26bee79bba9c1d7aea3d7e67022de64d57bdf2d1a

    SHA512

    7d160fffd72db1f9acb3d39f1bcf4222a3d22e4723d299ed58a85aba71504c32a78056003f1c61e698f7fd2e8e119f0aa85f5f3a52dd29cf9080c0ce623fb222

    Download Submit