Overview

overview

3

Static

static

3

0c13908775...e9.pdf

windows7-x64

1

0c13908775...e9.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19-12-2023 10:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0c1390877590fbff810b950a1f95e7e9.pdf

  • Size

    82KB

  • MD5

    0c1390877590fbff810b950a1f95e7e9

  • SHA1

    030dea377fe10666a876a25bb96ebe47d4e6311a

  • SHA256

    b2b8f9fc0e3fbfc745dd08788dbe16a3acb3ecee490856b954501c0d1ae29159

  • SHA512

    80898b9c252499bc9a7f7c00521c561a120b20b296e8b1e49acad3f589cf97d2c6fd1f7f30ed4453a8f893f026c87079191d7efdf2d5b10e833ab192f551490b

  • SSDEEP

    1536:7RmUAkQukpY4h0OVPAs9uA4f8Hoe9b54shhH3zzh21BWHpOvk87WAWrV45qWE:tQ9pYc3V4sZ4f8IevphhHvM1/v57Wp4C

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0c1390877590fbff810b950a1f95e7e9.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2964

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    32f6fff936e5a55dbe8f1a4a5b28d13e

    SHA1

    7b086c72300b9ee2f25e9c93903357a2e950e8d7

    SHA256

    ef0aa077e10d3e5ff071ce17709d9e40bf5b02aa3ddb357b44e0b1b0c851eab8

    SHA512

    59da478a5b7b6456cba68af30db58c3e289880f4d7761637adf877424a9c07e12e2d29de0b44ec622e25eff906c63c27e1ec417e8137bc83527541ac18027dc4

    Download Submit