Overview

overview

6

Static

static

6

26577b00b2...6b.pdf

windows7-x64

1

26577b00b2...6b.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    06/07/2024, 02:13

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    26577b00b28af00cad99e969effe076b.pdf

  • Size

    8KB

  • MD5

    26577b00b28af00cad99e969effe076b

  • SHA1

    e1d0dd23fbffe021377e47474d332ac249e01c50

  • SHA256

    d4aa4e12a7bc259253ddd8cdcc2efb2a5a14bcf255024672b25a51c045e5daf4

  • SHA512

    e858f37666ccda0feafba54cedcab28e1662dc1316dc908a7e090c006735c3dbd9cfbcc2a7caee055b8246d0bdb7132c9e3d759fe8192689d6e664a8eb6eae15

  • SSDEEP

    192:CP5uFm4kkZiE6DPYI061OQoBUA9Jpb8ld9oAtdIm5Yd:CP5uFm4kkZ/NWsQG58dWAtdIQYd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\26577b00b28af00cad99e969effe076b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2452

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          8e942503c17ca5d9cd1b9587de5badb6

          SHA1

          bff6814b187c0256028bc4b2c3fccf19be9ec6ea

          SHA256

          113eb828578347b32b58cae81d5b8f03290173045c560067ccd10f7bad8fbb7a

          SHA512

          1a25e8054573544e78059d8e2568445054e815a72c8ec1e45f73e79293ed91474f43e734eb68aea22defb9ac51336f9a77c723f4f7ff0561bbcc932e0633d1b4

          Download Submit

        • memory/2452-0-0x0000000002E70000-0x0000000002EE6000-memory.dmp

          Filesize

          472KB

          Download