Overview

overview

3

Static

static

3

6f5ff2f9db...67.pdf

windows7-x64

1

6f5ff2f9db...67.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26/12/2023, 12:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6f5ff2f9db822dea19438c0424044c67.pdf

  • Size

    34KB

  • MD5

    6f5ff2f9db822dea19438c0424044c67

  • SHA1

    966ae623e283c604fabb1c22b05d6940dab02f45

  • SHA256

    6596218975c0dc1dd8685e79036e53a5c9e1187ec7a1dd90e6238ccba0165b10

  • SHA512

    434c107c7252f342c9dfe105af94d342d5d4db3433ef1fdd383a5555882326d02b1f552ac4ef752eea326a6b66dda5744ed39f88f59943c1df8ddb6d2ae6fbc4

  • SSDEEP

    768:G+ADsbFObl+HWqmged1IOZAzV9qpyK7tX0H:RHbmged1IFjqgK7tX0H

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6f5ff2f9db822dea19438c0424044c67.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2236

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    117ddd484d9faa81bfe663f5b01907e9

    SHA1

    90430078622118507798ea87c95b7aeefd5c5406

    SHA256

    fff9a151bad954d11e13e8fb15937b94b65400df3ef40a6d4d144c00f7e7aab4

    SHA512

    3c591c5f0d2e919fccf8c49fc0d048440eef11e3a6e349c7ea3a7e732effc1206c9864381c71bcda82e6f57d98182add5a55e11b327ce19ab6719e31516ec002

    Download Submit