Overview

overview

3

Static

static

3

5b387c20be...8e.pdf

windows7-x64

1

5b387c20be...8e.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    14-01-2024 12:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5b387c20bebad628405ddc5f6a67b88e.pdf

  • Size

    42KB

  • MD5

    5b387c20bebad628405ddc5f6a67b88e

  • SHA1

    1e8b274c369c9ee659a3bc09407dc092a8638843

  • SHA256

    e2c25675c616b75c9b074e708e265eab1073722e0019fc6c63c068898bf1729c

  • SHA512

    8d1b16a668b62c8d6bb888dad06e67539010c21b223f57da29b8bc4e4d9f3f575956ce770da38208fce8b4093c3a2c61b58d5a88da27f6996586131f676e01e1

  • SSDEEP

    768:20MicWoFX6qqde/6HkpkwAQ+OKEgUZ0vVy0RW/wyIgEEwVXtoorZej7JaQ7rV:JdonqMz86KTmGbRWoyIgEZXtoEsV9V

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5b387c20bebad628405ddc5f6a67b88e.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3068

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0574dfe3b7400a0c83f22e6632c7cbe4

    SHA1

    aafdb4aee93c3ff318fcd3868cd54cce3a86df5e

    SHA256

    d7134b38f2ed796cb926f5e91403baccc4a70b7c1676dd08d722bb62355dbf0d

    SHA512

    3241df2a9b8b79cbbd140a3ee23a7fe06aac7d27097df122796b309924cd2208ee251e51cf52f296194d814bc7a249d8057acef6a44edb0adf3d67298ae7c018

    Download Submit