Overview

overview

3

Static

static

3

556f9613be...4d.pdf

windows7-x64

1

556f9613be...4d.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12/01/2024, 04:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    556f9613be4d6cc8951372399205d64d.pdf

  • Size

    44KB

  • MD5

    556f9613be4d6cc8951372399205d64d

  • SHA1

    f80e273a9817cd551f931539e131bbe30d7a0e89

  • SHA256

    8327207b250fa0a99d82f7b43bcc43aa30ea7ee5c457d388b8da3522251b5b1a

  • SHA512

    766a43f00c026e187bd78b5e3740b65cfb018a0b903c94452942d42d15c7c7902cfcf1075087d365ddc357185240c2c03f68aa42fa0b429bd48ca9d95b0f184d

  • SSDEEP

    768:NkjKSEenlaVFekh++yUSNzqORDMW1lXNyygIwoWl63PnHZD827udz:dSv0V5LScOSW1l9yTIwoW4/HZD8Tdz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\556f9613be4d6cc8951372399205d64d.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2368

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    505d42db63d22ca0616fd5a151ff6941

    SHA1

    b35ed703a3bbc3ef50efc1306e4e2a3da4a9d87d

    SHA256

    254639750b734183d73851b6aa102bb12c7e1571be43fbf4377acddb4a9c0364

    SHA512

    c194e1cad2f7ce4e5246a298aee5f86117f7992089c9643f122e6438e6a7d353c402e2e36556781018f2a35669bc1023153678da8b354ed4f2041b7858b923db

    Download Submit