Overview

overview

3

Static

static

3

0c33118bdc...af.pdf

windows7-x64

1

0c33118bdc...af.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19-12-2023 10:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0c33118bdc8fda7a8ea9a668e876f9af.pdf

  • Size

    75KB

  • MD5

    0c33118bdc8fda7a8ea9a668e876f9af

  • SHA1

    46980e92da5f4632d1c7b593f8e82ef5877183ad

  • SHA256

    887917272d4184d07e782991111b63e72462e5c816a40f8b908e593135245e82

  • SHA512

    5a3be164e067de0cc96766970aaab3ec9316d2876d6d772dd45643fc825828719f205cdb61b97da66112c95938f115025e4073b64e614f3dc8463a32bb2c2a50

  • SSDEEP

    1536:tRJ+2OVy6zyTO+TG6ak2j6oG9eOktbfKweIppYf+OW6pOu26WnzY+F9kP8RmVfVw:xDO9yTPG82jnG0tzKapp82u2tzdF9rR1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0c33118bdc8fda7a8ea9a668e876f9af.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3064

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0281ca97f96118c46b7f4402a8c1ad45

    SHA1

    971068b088feebc4e975706e31c701a90d04a34d

    SHA256

    ce097a65e56438b5aba0cd61a961d0650d689c5d19d01769dbf4788dde6756e4

    SHA512

    b148922ea158778902f52b9b800ae9b05680e25375a9c7603e9baa83a5c7ff3933d9e4a6ba3d7c8b1373c374bc4d0346c4a7b633b069dcf100f26d87969453de

    Download Submit