Overview

overview

3

Static

static

3

56c6a2f814...ca.pdf

windows7-x64

1

56c6a2f814...ca.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    12/01/2024, 15:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    56c6a2f814439098678f347f3b4222ca.pdf

  • Size

    88KB

  • MD5

    56c6a2f814439098678f347f3b4222ca

  • SHA1

    dd970dae5b208c179f368dff57d96055e1bd63b8

  • SHA256

    b66dc5ade2b9ed254cef55d7eed0778c671d8ca3ace9f2611d87d280da709ff5

  • SHA512

    0d1f7cb05f2740f928d0434e8defaa54e7579e3e15693c094f31255a0968d4fb1f317130068786fad7cc30750d780df3b107dcc011e94b2065a680b68ba8603c

  • SSDEEP

    1536:RUekEciD7vFmdDiVFllsPw4deqAELKnwF3TfwrqLRfVHkN/C3SjSafeMQegm0wp+:OekyD7HFllF4dBe+fwEe0aQfm0a+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\56c6a2f814439098678f347f3b4222ca.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:756

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    09dae1f19a8efd5b02e2defa7eccc992

    SHA1

    e25be9ad18590675b028bae41a5fc292c38ce82a

    SHA256

    d5a13ef400a58efd0b3b37613c3de6e6f40481b3f59f723346afb6008da8de57

    SHA512

    d21016adcf78c64246967c3ade42e9a07330f16a8cd0481a847be940aca72320acdda5c5e30bfcb014d7a59c4473a583a1aa20e657b51ccf98191ae09f5bfdb3

    Download Submit