Overview

overview

3

Static

static

3

4f566cb941...d1.pdf

windows7-x64

1

4f566cb941...d1.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    10/01/2024, 02:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4f566cb941d24ce7c1904990c9e5f6d1.pdf

  • Size

    34KB

  • MD5

    4f566cb941d24ce7c1904990c9e5f6d1

  • SHA1

    6cc851516ff5ea193e88d2b15237c03fba033aee

  • SHA256

    decfbac3c095db720e0e025d07940e6c0ca0e3f855ada6d15f919f8ec268f1a3

  • SHA512

    9b1e6a0b4712900ea5d8ec33de7bf4f6b25ad744c0410bab94a1c9e84b9b27f8a86a1574f93130c75fd5b4fa06f0a8ec36c0832d5a47dc8d9a917b73204f216d

  • SSDEEP

    768:ga/J4nRAyRs6uvsW6Fs5jMM7meljtbOJSa38Fe7Q0xhxdC:gUQ77JFgj17meqJH/dC

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4f566cb941d24ce7c1904990c9e5f6d1.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2240

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e148e5501962009899f427c3d532940a

    SHA1

    cfe57ceadb6c1d1b55308a44904e44598526b84d

    SHA256

    685b16a3351fb979df9e4aea8d4751de53183e2c9dd046bb8318bbe693a0d784

    SHA512

    2fcecce81f9c4e2ee52063f57db04341c7d4b58b90cafc48cdec79b9d3689cfcd5e9981fdedf25524ce32e35af167f368fec3bf8108ff8e301b46ad1e450835e

    Download Submit