Overview

overview

3

Static

static

3

56ba842984...91.pdf

windows7-x64

1

56ba842984...91.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12-01-2024 14:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    56ba84298478486448324a3d1e914491.pdf

  • Size

    89KB

  • MD5

    56ba84298478486448324a3d1e914491

  • SHA1

    a751083eebe3a22f7b5ef54e3f352fdf55bb739c

  • SHA256

    9548fd713b7a43d01ac4cf88b00aa89f5fd7535be60b6d68b04b762e42a7932f

  • SHA512

    cbaa62bfcb4381a4946b99a6e600c4ddb4d63de56f76cf237062df2786430408dccf65322008ee7c89c98bac4292b5843deb4891cba15cf10ef21e9f01d6432f

  • SSDEEP

    1536:hkuEe/wOkwJsuzg5cZRiZgLBvH1ZiWwOfkIN5WSNrg8W55nJKPOW4PFW8pO7tjrl:6U5JtzPZRiuLBdsJOcEOJEOW4PE71rl

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\56ba84298478486448324a3d1e914491.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3016

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    90d29a70bec29cdc2874678f58b44194

    SHA1

    121a638395f529aacc4e01ba60412610e1811a34

    SHA256

    c5e0b83506f4829c06ca07caceb37faebd5790a9bd53a89fc7fcdbce7a5f3731

    SHA512

    878528e8ed3553ce12c65a7fa2f5f3ec63b4cf7c3a4b6f6db404065739e5bedb18cd600a42b7ec58485dbbaad96a067842b06fe72fbf7fb537cdd49761c84f28

    Download Submit