Overview

overview

3

Static

static

3

f6ee1abf44...56.pdf

windows7-x64

1

f6ee1abf44...56.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    28-12-2023 20:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f6ee1abf449e6c035db5f48015bcde56.pdf

  • Size

    79KB

  • MD5

    f6ee1abf449e6c035db5f48015bcde56

  • SHA1

    771afff0ca958056b709c135252b0f7ba4bdc168

  • SHA256

    c01ea7afa62d849b2e4f5c28e7a22d2cd6b26b9e9c0b50fb5d146983358114d8

  • SHA512

    e70a3cca56a471de4d77688e5ecf2d4bbf818c6894565ce4df627283a18e0e80fd31bc6203c09323203daa61e1599551358621458b9724c4fa4ee20178708fba

  • SSDEEP

    1536:FxiCjD4qjDwczcSD6m5CLUINqoKfXQ3w+fqbWYG0JZ5WapOtQLkM0xm:HiCf4YDwucf9zN/KfccY0JZWtQAW

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f6ee1abf449e6c035db5f48015bcde56.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1216

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7c1001918b231091719ea9df13042d37

    SHA1

    4bedf932c904e1090eb637587fde66075c9b8c12

    SHA256

    05750df631bf4c7ab22590eefb27e607fa35a31879624a5e50ddadadbf86ea47

    SHA512

    5b7582e51e8db5ed3331b51398e357aa422112d8db5e19187bf73b62ae4d96d6edc60a1caa21e528a1248c7f00b0f15f422b00cd1f3b890eb877317189d2a645

    Download Submit