Overview

overview

3

Static

static

3

b0011e8899...74.pdf

windows7-x64

1

b0011e8899...74.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19-12-2023 22:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b0011e8899b1b827f4fc4d43242c4f74.pdf

  • Size

    119KB

  • MD5

    b0011e8899b1b827f4fc4d43242c4f74

  • SHA1

    83471ff0437dd42d7adedba4fbfbb4777104c224

  • SHA256

    e4dd845518a026bd8dc5bdce64570c28ac5279e5cd5d75abdf387bb49c931e7a

  • SHA512

    2ef743e63d3108c984ca251c64b24cfe861e95268aa41baa422d33e91454c253bb52755f0fcafd8cb4a12d72a53eeee5eb30d3286ddb1b85b0064a9f890867ff

  • SSDEEP

    3072:l9Of6f6wmqTO8ntgS4mHqViOjOVbbjyXvvERr:l9OfMyon7fnbaEF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b0011e8899b1b827f4fc4d43242c4f74.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2136

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    df2d559cba0194a157ea1a2bc6cbfa18

    SHA1

    d8ec12ed55e30fb4edf7c4fa9633db25c29c630d

    SHA256

    06299d0373f51cea6cd7f063763b496f10c662e6dbd725d3ff6936a3187c7649

    SHA512

    f7b30409abe12aee786adea0b6a1fed9b65f1fd2555181c1acdd6f518dfc725cdcfeef6a81c54fd5eab37a9357f1384f56141f7017737e33f4f1f84164d297e4

    Download Submit