Overview

overview

3

Static

static

3

5167c8f613...e6.pdf

windows7-x64

1

5167c8f613...e6.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    160s
  • max time network
    33s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    10/01/2024, 19:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5167c8f613a19f92807f4b7867f9c1e6.pdf

  • Size

    85KB

  • MD5

    5167c8f613a19f92807f4b7867f9c1e6

  • SHA1

    4f2080a4374893ab41a2fea51ec49759e7a78d0e

  • SHA256

    7bb912b31197c9ba3d36210939cb4832c6c2a6252cc1bd8a6cb1b8141c387615

  • SHA512

    4fcb4de6ad485951a2b8c91c8ddf250682ac51b07b9247a06d32d0426cd2fea08eec4dfafd2fac6552f8359cff41c0611b6e01471b450ba949ef4a2b0e46017e

  • SSDEEP

    1536:VpQOabvGTkCirwH5BIHYqZw3HD73CVQJvNWgWNhrCSfL0EgCYW8pO79yW:UbuTkeHXI4WuHD73Cu1whr9LKCD71

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5167c8f613a19f92807f4b7867f9c1e6.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2728

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0001fdfffbe8d99892d04d789b01e5c8

    SHA1

    3ee38c513f749ed9125883568b14520629ef3a8a

    SHA256

    271b09e2cf8b88db6e6f2015db83f89942344ba66f2cb45a5a1f1018863997c0

    SHA512

    e962887bc54f507d4592ec63c3d3cedf353b3594162c27fde2b99db6ebb3301dd95d4b8b9c0c0c81fb7e7a45864a3d1d90da8d6d4709792cef7bfbdeb03888da

    Download Submit