Overview

overview

3

Static

static

3

b56b423b6c...8a.pdf

windows7-x64

1

b56b423b6c...8a.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05-03-2024 18:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b56b423b6c0eb0725deeabac68d84a8a.pdf

  • Size

    84KB

  • MD5

    b56b423b6c0eb0725deeabac68d84a8a

  • SHA1

    8a8330b160d5e6c6ab05dcde115c6835dcc35fb8

  • SHA256

    36ba08b02bc1bce615dfa2305d7087de4eb86b8368f8fdb7ffc1e2105329b56d

  • SHA512

    bb88f50a778face55549de16893aac9abf0f04dbc0f8328dc92d66d6a8e79533a846df73776445b8d528e434b4b158200ce8f71383bfa2bfb3c4691faba29faf

  • SSDEEP

    1536:euJgXcvfZNPVMB6iuL2lE8mwo84V6Bw+5JMh/IuDVcDJHW10E0oOoEr1W8pO71nQ:xKsvRNPVMBEylvmwoL6Bw+jkIuDVkm0t

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b56b423b6c0eb0725deeabac68d84a8a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2252

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e7b5df8543c7b220887988bdc4b71687

    SHA1

    6e21d69fa083189b88db147c4e35ab6cecc6d824

    SHA256

    af4e41842e251a312943e8fef8820f53cecd807990ad69db22891b4bd33c0629

    SHA512

    d8e6d468f18c0713d14cf2d21b2e32eea2d0ecf30e9519abf5b08977bb2a9c1549da29b3bb4f130b708c0538ebe8ac56f5d7fb58a3ba18a0f61496b74fb037e6

    Download Submit