Overview

overview

6

Static

static

6

5a6950caa6...08.pdf

windows7-x64

1

5a6950caa6...08.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    14/01/2024, 05:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5a6950caa6af11862b001cf2bdc3e208.pdf

  • Size

    48KB

  • MD5

    5a6950caa6af11862b001cf2bdc3e208

  • SHA1

    36c65832f7ebbf0e589e2e2f1261bc54d3c20aef

  • SHA256

    0ae2c14bc90f7133d902d0462edba9b78814b23003575840cf243881fcec46f8

  • SHA512

    852e00ade93767c8c05313d2aad2087f8c394e1b521c98be5261469aec6f7121b32ed626d464d3d41a1d4b95c7221c00ff7345300d8379c63f22d8c85af16bfd

  • SSDEEP

    768:U+IQ3PdisU0YHMtM4qkbcvpNMbh7f8l1DRW+yWQ15s1iwAGiSgoojDBhBD4sSE1M:UlcPdi50YZ4qkbY+TK1S/ag9Bj9hBDpc

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5a6950caa6af11862b001cf2bdc3e208.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2336

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    aee7f852d8f5f800c101f033b828736e

    SHA1

    314c792165d7bd789983dbac83329c60790ee1a6

    SHA256

    f2212596c50ecf2db7a755df1ffb1b431c4977adfa2d41946f2639ab06112146

    SHA512

    93b8f76afa04fdaa84045d87e9c933f0b111d0e2e10ce1ec0755e0080ddbc8467802f98dea17f0def325e8d345d943d2b4e600f0c0a7a90487b05253d45bf168

    Download Submit