Overview

overview

3

Static

static

3

0d78c6400f...c3.pdf

windows7-x64

1

0d78c6400f...c3.pdf

windows10-2004-x64

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 10:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0d78c6400f5d37cf3587c121f778b9c3.pdf

  • Size

    78KB

  • MD5

    0d78c6400f5d37cf3587c121f778b9c3

  • SHA1

    7abd8fad3c78b097da0b1aa88bc20cd4e8fba9bb

  • SHA256

    a1a365a4c437464f9fad63a209078c977a63095fd01f69eab0c4b9527a94bbeb

  • SHA512

    e749f0a2d529d7e5fed08cbb42fa370b862d5ad7f8fa0906e84ee2bf2f885e861fd480b66fda887648f70377a248d4663d31a9a84dfb732f18cf9b8cef1d3322

  • SSDEEP

    1536:Ms+KJXD70wHEYCl42o8wounsCt3VFNp2vW4R/YrWypOlL53XsMz7f:d+KJP0wzn8wFnpvN8WElLZHn

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0d78c6400f5d37cf3587c121f778b9c3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2224

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ca58787c2ae84d0d0ba5ad2d7ae25656

    SHA1

    407fcf76a861726b07b090532925d64be401e0a8

    SHA256

    98e06869a16c054d8d5d52e3f4a96551e39f136634067cf7efbf3e63133ce835

    SHA512

    4d224d06b292520d278de21296075f7285974ac503ac8975873239e949fa9180a9a2c63e7584e20cdd1787a06c20b342473dff0a844b42afdc9d3a3941eda672

    Download Submit