Overview

overview

3

Static

static

3

56b221f729...e1.pdf

windows7-x64

1

56b221f729...e1.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12-01-2024 14:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    56b221f729ad3a84b9b930488f410fe1.pdf

  • Size

    91KB

  • MD5

    56b221f729ad3a84b9b930488f410fe1

  • SHA1

    644732a18050e8e76051cf601432f54dc9d2bdff

  • SHA256

    fdee08302202e3bc4a2639a018e2ad2c0ee2c63859bbc4846256ef54aad4c4a8

  • SHA512

    a0f0ae0fb5b48dff41ee18c21590a17ff4c8bd6f5668bed7171d01bcb0e0855647f4145db4a2ae6fb81feefcd8a97dcc5b39623801ef7c558a8adc274fd82a5b

  • SSDEEP

    1536:j6ytbdbQ6Jx9esu2YQ5VXG3KC6RdLkbGuP1ODhqV7SUkCaVSXbrSDKXsiTUWEKuK:tVQuIxJQ5VXJRtkKudODARSx8Xbu+Xrr

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\56b221f729ad3a84b9b930488f410fe1.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1948

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f9266ea4d28812116eebb3e10de38d73

    SHA1

    a930a420d3114538806ec3404ab26ebb6aa8f4c6

    SHA256

    eafb699da4479d4320f97708029e502ffd0a6d006f424a07aba52bc78ee437d5

    SHA512

    60ee277af736b7d5aa45c27dad30f51b908991d9f0757e4fdc8c162f1f74511773ccaf9d50d980c82f644eb215e32a46a43d04c715be8812242d513310f40d3d

    Download Submit