Overview

overview

3

Static

static

3

0a65025685...18.pdf

windows7-x64

1

0a65025685...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19-12-2023 10:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0a650256854cb7e676f31cd360282818.pdf

  • Size

    84KB

  • MD5

    0a650256854cb7e676f31cd360282818

  • SHA1

    043d3b218fdde9d906c4aefcfe5c9b61a6ebfa48

  • SHA256

    4cb24dc46f2d856f2050a3f97bad6bed82263ea9237e82cf7d5e6504ac201994

  • SHA512

    24b02375f9d680bd0ff153c796bdc3d687ff338916a0a5a483f3c71a9c9b902c7ce9fadefbd82d57ff50de3b4d698cfa8b05374f4c6b31dc67597e24b338d4d3

  • SSDEEP

    1536:3LpiswN7vaV8uGxFcb6GlTTGtFCivRRR6IWhrB/cPJEnWwpOSwjm:74sc7HuUKb6YG7TRRR6T/cC6SP

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0a650256854cb7e676f31cd360282818.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1152

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7fd151fac62cf105999f474f1b990bda

    SHA1

    a25640e9f0693fb6d88a318fd5c9224b8da152af

    SHA256

    58f2476f1f062b325163f056379346c8976106450acce2ae27c6a1cb0da280ce

    SHA512

    850c9ca3b8f72eb34e0f9310d7c270d82867373f532ce7dea71bf625979629c364f7f66ddeb978d71f25f57285135b6016179279eb1af537cf3422994a53db02

    Download Submit