Overview

overview

3

Static

static

3

6fa41e807e...26.pdf

windows7-x64

1

6fa41e807e...26.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22-01-2024 14:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6fa41e807e732775d943ec1c5a332126.pdf

  • Size

    43KB

  • MD5

    6fa41e807e732775d943ec1c5a332126

  • SHA1

    5a1676bb3ef57d1c07d3d07acda8f88aacd59c11

  • SHA256

    c54b9639a1d9d5aeedfc2dc6db137d22efe161f897beab8ca661618898949443

  • SHA512

    26472b5c69b2aeaef73cccbe95f31353ea24b137b385846020c857b4ddf0a3ac0721ac0fd6963f5b6a9efc39cfb9a197cdc9d6621c5d1439f7e5a6792fc44f7f

  • SSDEEP

    768:IiLO0crD+Mc56l5FUf1q6NZkwTnwxyvfJzevj/n9FFdQo3K5Oc:Ii4DBrIf46NZkyoY6FFdYOc

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6fa41e807e732775d943ec1c5a332126.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1944

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e70163cf138bad24462a4d7f79c88590

    SHA1

    d949b162f35bf38e375cfdad31a85a5f82a3a5a4

    SHA256

    fe058652177443b5ba04ee1ab4091aedab4e271411e7dc6296b0d4640ab5309b

    SHA512

    7fbe1c90ed550a784e943f87c6653dddf16b8eb70a28e9312c53cb9668c79b3b6f68e261cfbea3ee05cebca3fa62d187910cacc37272b333d096b2e19e335fe3

    Download Submit