Overview

overview

3

Static

static

3

0dc1f36a02...ca.pdf

windows7-x64

1

0dc1f36a02...ca.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19-12-2023 10:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0dc1f36a020b56eff9d35795f65e3bca.pdf

  • Size

    82KB

  • MD5

    0dc1f36a020b56eff9d35795f65e3bca

  • SHA1

    0faf0c21df54d22f7b12ccaa5e69ac612167038d

  • SHA256

    8c54c5b8283cc6c6cf0fbe0ab5030df8b9b7e1c9625c68ca7a5aadfc362b1209

  • SHA512

    164bccc3de53c82ebe8e64b378326c873304ed32267c815b36a6e616cc35885a48fce16b9b33a78dd9f08b5de4e2e55c4ed9d054107d384d65ea88c75220f51a

  • SSDEEP

    1536:dzYwcyVD0iqz0bOxoUnIlKJc2fEb9NW3w1MtRjWspO2dlndxm5CM:uiQiqIbrKJTfEpMwGe2dVPY

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0dc1f36a020b56eff9d35795f65e3bca.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2384

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    80a7905ecce0b0ebaee7e7646b033b10

    SHA1

    ff4c2f4fe3c39b20ba518566c2359a2dc6964e5d

    SHA256

    18ee5946fcee0fd631118bdb0895689688e4c63791c00752c6bad595721e7e20

    SHA512

    207ca701deeba3ac1fd1d75c6e18dffc94eaf9ab710ed5e512c09bcb859eb086ede1574c5b5fbd7801bba8520fab7669831f428228396a50e061bf3b5201f871

    Download Submit