Overview

overview

3

Static

static

3

5679bd4d25...f4.pdf

windows7-x64

1

5679bd4d25...f4.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    132s
  • max time network
    146s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12/01/2024, 12:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5679bd4d252280d374d4463f266766f4.pdf

  • Size

    93KB

  • MD5

    5679bd4d252280d374d4463f266766f4

  • SHA1

    56ab3e050a4f5e7d5bb697aed3ac6b5b69db71ed

  • SHA256

    4b6de6af1f73e4d638f0b563b274c24679a355591d3d7ef3988217ac6ff12f84

  • SHA512

    c9c662a5bcd8006a8e58bf2f0f4fc1b4d3087ec0464c0f3a927670b20e8f9111bc65b7945027cd25b81d69f5036cd8ce27be9c3ac93dcc7f556db87901d09498

  • SSDEEP

    1536:HcrBrW6Hj6iwBJcvVUHel2datzQ2H3m3+wNlWNJ3zFNoW8pO7SW+lJK6F/rxout:8FrWe1IqVfOX2H3muwN0J3pNT7CEsxH

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5679bd4d252280d374d4463f266766f4.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2752

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c6f626ebc00a4470b2f437b161a8595a

    SHA1

    3f3b0a9035fcbc084f5d07d7ec9c40ccb364954a

    SHA256

    a658f2a8cff8a9581625a4cb86784d82b024bf7bf7e78f5c1d635b70a0aedd53

    SHA512

    9c30b184ee04556abf7132f4993dc4168964aa970443acb3477bea33a7946b2d3a08d490cb949a3e1780e93ac705c098525d27f575d79d117dc231d0ddde0ea4

    Download Submit