Overview

overview

3

Static

static

3

52891d844c...68.pdf

windows7-x64

1

52891d844c...68.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    11-01-2024 04:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    52891d844c7a984c2a2014a5473b7b68.pdf

  • Size

    86KB

  • MD5

    52891d844c7a984c2a2014a5473b7b68

  • SHA1

    57bc8f9f84bc4a21fb7f29092401ca0efc807390

  • SHA256

    c3e56fbc88e6f63102a047b8f063d8b426cefe5153aa1526dd02c404ca6441ba

  • SHA512

    bc65bb531b476fb69924b4040441e9e96a08ff71942098ee4e717989911e1e25d352704bbcffdaf09cb25c80e37e0d8d3c29537ba4476ba8de1165beb46f202c

  • SSDEEP

    1536:q6w0YvEq6Zlw9Lmrbt1/H8YuTHipOR199ZDU9xevkOGiLFk9oWapOtQHWT6GB5T/:Dw5+w9ar5BHbuTCO/9TDI0Gkk9RtQbGB

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\52891d844c7a984c2a2014a5473b7b68.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2084

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0d39df012c3b320aba2929e5ffd5a9cc

    SHA1

    28d37fabc238786bd36c3fd083b3209641544292

    SHA256

    563bb0ec5bfa78eaf25826ee7001cbae9d07c89fb0ef5e23b58c469d91bd973c

    SHA512

    01710492f46989f0d76fb99b4cafddc030d0a12f33c3c806ea9b7eb0ec6c37e06dcd1770b395591aa40cfe079928355f8a16b5ef43bb3b0dcec4902c163319af

    Download Submit