Overview

overview

6

Static

static

6

f60c8fb5aa...e3.pdf

windows7-x64

1

f60c8fb5aa...e3.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    28-12-2023 20:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f60c8fb5aa0c7fcfa1c9e1e2866ccce3.pdf

  • Size

    24KB

  • MD5

    f60c8fb5aa0c7fcfa1c9e1e2866ccce3

  • SHA1

    d598489287f7baafd1fdf530aae10cf2a697ea27

  • SHA256

    05a02867d68c6d2870dcd592cbce14377a0d264c61a9363c24023d5b7eb4a3c5

  • SHA512

    b6491e208092f5871c54e4c611dc588212c55b8ae5449023e5d06363eb9b701020d8bb36fed1808c06582957ca78fafdf3518b2abe5ad028f8999e5731775110

  • SSDEEP

    384:lsFlS3K6XgKV7cAgdOpW+0yS9Wmy5XuREnhu7qSzEMV1VHRZKxsbn+xCxAsqS+sK:5gGzpDBS9ty95SzEMU+b+x6AUYt

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f60c8fb5aa0c7fcfa1c9e1e2866ccce3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2180

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    aa6516fcf24a65299f5f465d13ffb504

    SHA1

    cd26c0885a5e9279b80caf7850aa2a6633dfcf5f

    SHA256

    f657eb6954bfe8af1755132de88c4fd62d42a14502f9033f65792b17fab8ca55

    SHA512

    fb6e8fe450d6d4f7c6db256bf6745c310b599ce5aab1b2cf73efbb767fe16097f9491afa891badffcabdcec30c245216d2ba5ea7094286fa98d9b5c7f77b5b34

    Download Submit