Overview

overview

3

Static

static

3

b56d16f919...ce.pdf

windows7-x64

1

b56d16f919...ce.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05-03-2024 18:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b56d16f9196a2b9ea266bb405d4c2dce.pdf

  • Size

    90KB

  • MD5

    b56d16f9196a2b9ea266bb405d4c2dce

  • SHA1

    57abc60578e6d8f10455dae17cde75881016d0c8

  • SHA256

    31c257993ba5ce5fbaa15787c485155eceb7819d1cf711a37f85793af21f869f

  • SHA512

    2e12e70ee9ac12584a8eb5e80f086c0e79d12ff15d908794f855ab1f7a33c4dbc294bcc636940b40306f1673067eb38887acd2683bd5f1ed4297e3a2583296d4

  • SSDEEP

    1536:gqk/fN580l/2KMtPfTup3+VYxlFbFvbH4AgWCpOViIWV2jex+lcgFcRAR+rC8DKQ:0Vy6MRruR+Wvr4wVi/x2cyKC8B

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b56d16f9196a2b9ea266bb405d4c2dce.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2600

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b5487b8faada2d1e8583c5a2ce3b813b

    SHA1

    3a559ee8feed3ea5856d2318688b11874f197430

    SHA256

    dc9f6555ef599be6ccace23f1ba13675c32b4804152639e19aca3d92d2422a66

    SHA512

    e4391f0c91cca57694d42c3c8a6e32f1f5ba9924109918befc9072c0bf8dbfd327384095b84ef46a00b2d6b14835d5a55c085f8a68567ca50652448d16f27e91

    Download Submit