Overview

overview

3

Static

static

3

5600ba00b3...65.pdf

windows7-x64

1

5600ba00b3...65.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    12-01-2024 08:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5600ba00b3e0b0afd382b23e75ef4765.pdf

  • Size

    93KB

  • MD5

    5600ba00b3e0b0afd382b23e75ef4765

  • SHA1

    7470a5c1d6d746434bd5fceb9a0cb2323a5a276e

  • SHA256

    211809fc363b37fa59f35ea43dc2fd323a95f8aadbbbcd201c6fb0726f3df367

  • SHA512

    bb325c89bf82a341537ed500ed0c987339c016751d69cd38ec95bb288a9b918ea65e811169642c0e203bef0568bba81a256de1a5f9cf1a2dd4774fac11a10562

  • SSDEEP

    1536:+d6dIlhJ4zkE5I0PJuhPCWQxwB/8PfINex9IHJJycR6WypOlWWxdvn8QgkxBjf/K:66sb4wE++QZUw58PfIg0HHycplDd0Qji

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5600ba00b3e0b0afd382b23e75ef4765.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1364

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    93dd2c80001fb2d6050c52508ff93aa1

    SHA1

    8025499f3c72f3ca095fd31bd8208296a0dd407a

    SHA256

    f6f3ced25b7dbb2a9227639eafe77e3d05154ed9b6b9fdd6f6dac6e985fc9aa2

    SHA512

    f9cdb678e1a663fceffdd383e16263cd5131a51e553fc3c636a75d0c813ae0ac285267629af1a9d6716b080f3b163372b4185683241724a978698fe84112fda7

    Download Submit