Overview

overview

3

Static

static

3

64e5562343...0b.pdf

windows7-x64

1

64e5562343...0b.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    18/01/2024, 08:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    64e556234351b6e93c610003999e480b.pdf

  • Size

    91KB

  • MD5

    64e556234351b6e93c610003999e480b

  • SHA1

    c8a8acc644fe35961e64cc97bfd2692e927d4bbb

  • SHA256

    23cef5bf3a73c3f34b46ec40b646769cc25529576582ed2ef156c56a36f6a152

  • SHA512

    8642715db0416c9337ca9033b5b0e266d8eb28d36aad85eb2ce5ff1e96bc36fd7ece5666d99ce6a56c507c5b030cab7b99410d904e7f4b9c3691a495b746708b

  • SSDEEP

    1536:xNaC7v2N5Y35ijmT+V/kyIdpd7ha4Y8E4Pw39P9X/DRahUQk/NMggX:vD78d6T+p7IbddG8hwtP9rRah3k/CZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\64e556234351b6e93c610003999e480b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1352

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6570b39f534beed670260539d48e59cf

    SHA1

    6773ca1d4f80f0f10dec3de22492bd3a59bb0fd0

    SHA256

    a53aa1190735db0b4731ecce724785121bb8e235e550c3dcb3c06174e51bd546

    SHA512

    d58da3a269c1567b7ecb813f85da0a7afb5623c26e5efbd0c2a95c2ddba4db833b5eba7a0e835a7c09267491df046ba9a4d75e4e95d9f7645f248b780cf53814

    Download Submit