Overview

overview

3

Static

static

3

51967b121d...ff.pdf

windows7-x64

1

51967b121d...ff.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    10/01/2024, 20:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    51967b121d1ec6d2c6c1e72c2e472bff.pdf

  • Size

    74KB

  • MD5

    51967b121d1ec6d2c6c1e72c2e472bff

  • SHA1

    6a65d895bcb580b76ba475cfe8bdea5ad0058a3c

  • SHA256

    6abd47d5e8fd3488cad0610096fa6f84132b55e29891daa83bd99b156f67473d

  • SHA512

    678ce46121c16737e6fe4f37a5b5a9c93726aa8cd87f9d5117a71eeed06cdc4b942f87d3466d5752877a4cd77b61dd578db421daa3ae83aa28a38837e6eeaef6

  • SSDEEP

    1536:MvTEyWiipwgklFA3QRY4azuJgRo6PXLd4abU7zwAE7Xp8tDVG:AlWiGKW3/26uwAiXp8hU

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\51967b121d1ec6d2c6c1e72c2e472bff.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2044

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8828e1a0ce32f15f64dce62b4abe8d8c

    SHA1

    ac10f22288ed773faaeb2009aefed26e725225dd

    SHA256

    42b82a589154a88ae9722a42ff74ee57a67fa888d774a6ae6a5908fa81a275bf

    SHA512

    fb89d13926bfd2bd015dcc3b302dce4f32cdf922a4284397bfb00a134794126f56daf1d019d87e28046f75896eae03679d9d469d9b5f1eb8dfb4cfe358442ebd

    Download Submit