Overview

overview

3

Static

static

3

5685698019...0d.pdf

windows7-x64

1

5685698019...0d.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12-01-2024 12:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    56856980194e011c86505f54fdea6c0d.pdf

  • Size

    92KB

  • MD5

    56856980194e011c86505f54fdea6c0d

  • SHA1

    b4ddc2457e7f4f77aff6c95f41bd4bb64a7b8843

  • SHA256

    3061aa1acb152faf3b70a1df374c0c67bf37999fea804da23067f4d5a6e58f27

  • SHA512

    df42c77d2e5a103ab45202528da3877fbbfcd8679e3e2e8300893b7605b671efaaad4ea8a660dea24ccb9c70a73a5184140bde555e948f2f141cc1d3145c4912

  • SSDEEP

    1536:L6ftuwuLkShGy1bTyexJqqwV5g3tchvTUTeN//l1sW8issMzBWOpOZzq4e8s2Oi:Wgw5ItnJq75g3tUb/lBI6Z+d8sw

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\56856980194e011c86505f54fdea6c0d.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2256

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8f7202c834a2116feee79f6658ee8752

    SHA1

    5a5555c836f860d4eb362d216486ed31e6f9b6e7

    SHA256

    3316fc4c406d9b0528de63ba3cb8d4aa899205f101f339c04b43d65466ff07af

    SHA512

    7373a8039516eea126b00870fb86fd2e39044e8d3dd0620ee36defbd25f1baf52fafd817d9c14f1c847d8f65bf1cf3495c3396bb12fa2e8c45821b4c2b6617bd

    Download Submit