Overview

overview

3

Static

static

3

6fc2a8157c...43.pdf

windows7-x64

1

6fc2a8157c...43.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22-01-2024 15:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6fc2a8157cc4c1762fa1562cb5fc4643.pdf

  • Size

    88KB

  • MD5

    6fc2a8157cc4c1762fa1562cb5fc4643

  • SHA1

    5e18fe0e63e67fec58d7834c35b9d0f0514f8629

  • SHA256

    543dcc4cb78879905e09912da1b4b2cd09595fa9d6eab1f839db5601386b3164

  • SHA512

    6e7a6fb99f8e3bf92f3d6f5042cbe3a4c0d1c04f33228c5c219a73ac9b8a2a37121c20d0e59aa2ce82024d7fec0b321ae23bbe397a412849c1fd17abc6eba47f

  • SSDEEP

    1536:ko0T1cdECrmkH12xADUA5fzwOeO8Oey8hJc50PfPlwXwQtxceca+Nklf8q4o9MWi:z0TOtrmkH12x8j5nXneTi6fPlwX9tKeM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6fc2a8157cc4c1762fa1562cb5fc4643.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2540

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    05c54ede4c9ddf41c62eadc36882d668

    SHA1

    993a036c5b79d783f96c7f880f9141fdff7db864

    SHA256

    754c796da3c61c63349b5431d5bbaa431d48349f17ca5c315d63bbc342eb598b

    SHA512

    67dd9c0f86cfb7b16f61ee36c185aae79087206d57a5379282a210d0783af44503273d5a7c426024fce1a7c87b8f7044b6b57245d7d9f0327e314dc31a7d7a2d

    Download Submit