Overview

overview

3

Static

static

3

0bc2df372f...a6.pdf

windows7-x64

1

0bc2df372f...a6.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 10:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0bc2df372f58d74bb99c703ca3b94fa6.pdf

  • Size

    76KB

  • MD5

    0bc2df372f58d74bb99c703ca3b94fa6

  • SHA1

    b1960a72d8fbb71aa9d91942baa0eeb1652a1b75

  • SHA256

    9707db0e1bd359c2a6c4c67858cc006d746f837f8aaa4cb01d78c05e397a597b

  • SHA512

    ecda1cae78d991d3f73f5ec1aaf4b79be341751d1be8079065bad522241630cf7380e1934d69dc3d09fc8e00f74025b365f15c23e105887521ee59df4a5596d2

  • SSDEEP

    1536:zRCyqyWzpehLldsfCfYPxpBoZnrRW3Gmmyam+uAPyWUpO7zQ3cqX:tqHIEf+upBoZnrU5XAPt7zmc+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0bc2df372f58d74bb99c703ca3b94fa6.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2476

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    28df3355c5a5fb2b9a58e067b5991e89

    SHA1

    21d1bbf7a2bf7fbad08bdfdf79bca7382cb863cc

    SHA256

    e38ebf1879ed42b981d24fc40cce2eb5964be3893e2d3960748692c24413b5a5

    SHA512

    91c9ddc623880ffcff570f599f18ec6f605fd96e5ee8a99e1776da82e81f7c2771e4133f7abead915eb85165121cc63a24d79335c813b0cb37925af1800e70a9

    Download Submit