Overview

overview

3

Static

static

3

56d5d4166f...c9.pdf

windows7-x64

1

56d5d4166f...c9.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    12/01/2024, 15:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    56d5d4166f4062f893dae12a3a26b4c9.pdf

  • Size

    81KB

  • MD5

    56d5d4166f4062f893dae12a3a26b4c9

  • SHA1

    cc3504d013657cad3b56a8c3b1166ff434743729

  • SHA256

    f70879f64736a57c840ddb0f60ce3344b097f51087c89653aaa70efc92e157ed

  • SHA512

    32f6f86708ad502099121f845ac75bf684fd7982cd7bfab3f9ade05f3095d55e85a09551b03ccf54fd0877d2df3daae1b051e990912570f3220522f5e75f76cf

  • SSDEEP

    1536:EsN1LYKpIvtdzOg+ys2+zSfc9lgl0jTj943IWspORpWbp8WIpPMbp3ijGphRqu+a:z1LVpIv7zOg+ygeEPgij943jRwpgm3Ku

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\56d5d4166f4062f893dae12a3a26b4c9.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1760

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    de7630fc163268e43c0836d81bf0aa1c

    SHA1

    2da9df59e0422fbc73900ae1ef51bf9145884655

    SHA256

    02f5a1031afd5a9cce81e9204922ac866b6fcb60cfcd07930261342c69be94a6

    SHA512

    500b12b487097dd46676cd275d7837558b42182759e4093c56f494546383717b56d69cdab96019bff002fd0bd7060b872f350c1da52e9663776b4d226d6106d3

    Download Submit