Overview

overview

3

Static

static

3

6858e0ff38...37.pdf

windows7-x64

1

6858e0ff38...37.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/01/2024, 18:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6858e0ff387f93d68b7f939358164a37.pdf

  • Size

    85KB

  • MD5

    6858e0ff387f93d68b7f939358164a37

  • SHA1

    2ca5c5e99f2012496790c819ae4542a05dd30fee

  • SHA256

    96abbc45669b37bd2cd73b2a942587031c3a68483457ff7d849997969414195b

  • SHA512

    38279001b9864555fdf4c2efa1f22a16a80a000a3ccf71540f2a45abe1743163c5249bf1f12b0640b2def67fa371306cf6cc3d80062905d8fd97976f8a163145

  • SSDEEP

    1536:aLu5MFr/3/MzXmwYDWHnsKdQON/LBKdf5ZIuDLYZsErq9WOpOaZEWyjclb8KH8n:uu5KsmfDcsK5NTBeGuXYZPrq2aZ2jc9M

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6858e0ff387f93d68b7f939358164a37.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2720

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    08ce1d7a056ed49438802846c94c318a

    SHA1

    771f17244d82c4b152b35afd837ce0e87fad520f

    SHA256

    839e76fd1aa7279fda5c991bd00fb8311769480f86fb8a381e768c68be708ba6

    SHA512

    0a5be743d68fc19af2844f5a9dc091faf987a1e16a286fe8fb0d2d7c61f6f6661c452e42420debfdf594c869b4b7dee8e0f609faf1caa965cbe88e808f527af5

    Download Submit