Overview

overview

6

Static

static

6

577a586982...5d.pdf

windows7-x64

1

577a586982...5d.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    13/01/2024, 00:14

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    577a586982d6bbffa01434932392fe5d.pdf

  • Size

    62KB

  • MD5

    577a586982d6bbffa01434932392fe5d

  • SHA1

    2203fc9c8cac83100c5f7d9e42f72fae751f12cb

  • SHA256

    125b3b8e8ae743764129e97e9036587b4598ce099351729242b2f33952bd95d4

  • SHA512

    e6ca29612493e5a2d0960f277093e0dd9bc64f8ac33f0e6067d56f4fb43559521e67a8c8d2d8edb9aaf17b28727ea02d9e2bb893fa7ec706591d92fff5965b1c

  • SSDEEP

    1536:L4emI7NpEn0quJ5KLKhF2QV/pOQOm0UuO875T+uK+:cjUNy0CuhEQlpOEw7t+J+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\577a586982d6bbffa01434932392fe5d.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1872

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          7ce5b80e1d09733fd5d6fe9e28b26cbf

          SHA1

          28bdf3332d5d2e63ab4690807cda8f435cdd2af6

          SHA256

          68e23e6b2430fbd53e60b96d4de147e1cf3f655e9eac5068af58d7a89f44ef0f

          SHA512

          99ea85756c5d4ee2bc61412fb3a04751eafe9c0a16a7767448748fb942f16631f27d7d737017deb2e055b3a5430bdb8f6a055bd3a86e01b5c2c647a99769a67f

          Download Submit