Overview

overview

3

Static

static

3

0d767f9735...48.pdf

windows7-x64

1

0d767f9735...48.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 10:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0d767f97356e23dbf373d793fac36f48.pdf

  • Size

    81KB

  • MD5

    0d767f97356e23dbf373d793fac36f48

  • SHA1

    3f7d515125f59c022e76ec8ae5b02173b4ae0f05

  • SHA256

    2ecf7a8b2e5f74d8d077db26187d4fce68ef417744f9b30cdd39859c0c0aaf7e

  • SHA512

    113faabb3ab5648baa8ab2197e3b7825679a512cb8243a85cb1471e8dc481eed10c226f62672f0dd5e7b6bb860e8e0f7f8d41df5297018978b96602a1fe638fb

  • SSDEEP

    1536:ftQwwCFcGRSztoD3jYN96MoXeJSjVFOtb1sp4VWuUOIIPVnWapOtQC+7YDWrWCeA:lDsz+7sNgMC6zq4VWXOTatQ4aWCcV9cb

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0d767f97356e23dbf373d793fac36f48.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1064

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    293fff948d44efe84c960d6e343aab74

    SHA1

    1993567ad951c863b2aa4ee674d3b167b58dcde5

    SHA256

    af6ea0673d60d42fcbbc6c3451903e485cfbcbd2663852e4a640b27e02074c0f

    SHA512

    b79cd9ce626f9a19f407495de3a361e8f27f1f07f953270e1ec94717ec150eb0b5502035e775a165fe26420b477ee4fb40be7c4f2e153a61de8073087a922715

    Download Submit