Overview

overview

6

Static

static

6

0ac3ad678f...f3.pdf

windows7-x64

1

0ac3ad678f...f3.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 10:41 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0ac3ad678f8fdac5d655a6d208b8e0f3.pdf

  • Size

    77KB

  • MD5

    0ac3ad678f8fdac5d655a6d208b8e0f3

  • SHA1

    f41afc0d7e45d95b4c2a5400b9d31d02dcb31a78

  • SHA256

    4fd4de629c781bda06968242aa08b0f136ec72bf25db1d8283f4e1c77226ee45

  • SHA512

    6e941a4adfd2f6b8b685ed9f7fdcaf68297b656a8ddbefdf230bdb336869ac03a2ea277b046fc35cc55d5ff6797c398bb5bf02ce3e87d79404937dbd2ffe62f8

  • SSDEEP

    1536:AcnZKYXTvs0bqMnP+Y/6EOX5Rq1312XubciGeqHx9rWkNpOPx+WpHuWBatng:fMg00eMP+G6NX+lEu1GeqHx2Px+WpHzL

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0ac3ad678f8fdac5d655a6d208b8e0f3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2224

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ea5f6fd2d191e03d90c6af67f61dfb4b

    SHA1

    d8126306c72fbbadd22288ac85a6cc83b875f5f9

    SHA256

    35af67e1d689a44d6a00c27a7541ed693d6c5d32aae1dca683b615a208731b86

    SHA512

    619581bdacb548f6ec6cabfa7196a0e47cf7fc0047a53a3949b854c4057b0122eae83b6d72db288241ebd4fd55e86e82714d72611924f727d6d80cdc36a96792

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.