Overview

overview

3

Static

static

3

b56ddda583...14.pdf

windows7-x64

1

b56ddda583...14.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05-03-2024 18:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b56ddda583e046afd0f7142e1b8d7714.pdf

  • Size

    75KB

  • MD5

    b56ddda583e046afd0f7142e1b8d7714

  • SHA1

    df2034455613f436b50c4eb66c1474928da096a5

  • SHA256

    b61dd3d621326cfd96b429ea3f9a334a92640abd13fdd35547ef336154f1039e

  • SHA512

    b4d6a30a12a569e6bb7e790d8568ee97d9ec34101afc03e1c31b546dfd3250148478d450e7d4eab0725927cf02feeac968d32b196501189a119eed463628d9ef

  • SSDEEP

    1536:RnZt+paxfz0HYstwYKMV3EOSHwNTLlzDDhTwxtE0DO48quVTYuobGQ3PzQJG66Y:RT+QLAYNY1pSQNTxaV+/oyeM0G

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b56ddda583e046afd0f7142e1b8d7714.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2932

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    67e1cb06a8c50484789e9aac358917cb

    SHA1

    e3e16a28c3e5cb66cce02ce86b1db5763583518d

    SHA256

    6786c98d0ba4ad4c3b70eb543395bd6a8aa9828cf606d591c8ddf38bf2441b40

    SHA512

    83ab57f91f5f52f04859333f2007c1790ae735c268003f6ba8d0ebadc10369c493e932a3c1f63f5f68271bf9b3240593956096fa85f9df835912ed726832e17a

    Download Submit