Overview

overview

4

Static

static

4

1e6b22bb5a...a0.pdf

windows7-x64

1

1e6b22bb5a...a0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    06-07-2024 00:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1e6b22bb5a38557315aa816666f81ca0.pdf

  • Size

    511KB

  • MD5

    1e6b22bb5a38557315aa816666f81ca0

  • SHA1

    98e016ebe065f29688fc32ba2768750a3473d94e

  • SHA256

    a88947f45082cf34266d0241dfa9a42f7e975451fceea86607e993d244c63655

  • SHA512

    d03f61dcb62c4a5c389d40d179969c00aad05b6f38439be8a36f95fbdfcc55299c8cadc6d3b50cc26656553366f46eaddfb773c07a1153f52671ef6a8ff86c08

  • SSDEEP

    12288:+I7cX/IE4IEp+gp+BlNRWf1mIshujrCiIhUfQNd6C:+9Axbo6s3W9rgNX

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1e6b22bb5a38557315aa816666f81ca0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2944

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    577aedc9b0764c49f7b4806e2514932a

    SHA1

    f4d96bed5f98edd9eb8760ef35553fd0194713dc

    SHA256

    d4e68d2c71f52e4f20ddbd2ec496472f9f92c27271cf4510bebe3d880daeda83

    SHA512

    5371638dcbb9159bccb53c37cc471b0f20b2f2bccf853d45549ce7f120391bccf7844bba0a95e1bba49238a525a50333dc5a0bbfcf1782535185b591af92b99a

    Download Submit