Overview

overview

3

Static

static

3

657590de16...a5.pdf

windows7-x64

1

657590de16...a5.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    18-01-2024 16:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    657590de164bceec1dc5822d6de441a5.pdf

  • Size

    96KB

  • MD5

    657590de164bceec1dc5822d6de441a5

  • SHA1

    8018846554a69aa9e6ec3a5fb1e3ba68e29e31c5

  • SHA256

    89b4903ed9133d1e506459a7d257ae5333d3d95d95cb60e4964945e5dd8d7b23

  • SHA512

    28be53b74b55033183ea5c505ca701f816635e6b4f73590486f7da2d06ac65f1062e7ff098f6281a8dfcdc01021bf8fdb6232e85069b3116c8115cb8d54cea0e

  • SSDEEP

    1536:iB5qy1g1aM9dyUbsd+TY0oF6/ybLSVzN1eSXzjPvwW+8CzKnsCMlMHWQpOChCO:DggMR+M5FcoUJXXrCGsC+MyCJ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\657590de164bceec1dc5822d6de441a5.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3016

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c012c11f80f20466078b08fac29ebfc5

    SHA1

    1c46c8a7fddbdbe765427bb82f0fed684e52b138

    SHA256

    533da63c71cfc87658b78a403182a392930a3ea18100450267cf1a0a84f1885f

    SHA512

    7869bbd39a6c9d477002313c78ce14a49145bf46747af6d394c03a2b06f7e41a5e4cc0e69d3cd33a289a0c5f4de9acdd0d3639c35c3e6cd5aa297039f708ff44

    Download Submit