Overview

overview

3

Static

static

3

5e05a9a8d9...f9.pdf

windows7-x64

1

5e05a9a8d9...f9.pdf

windows10-2004-x64

3

Analysis

  • max time kernel
    150s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 03:48

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    5e05a9a8d9f376a90675a192da8ea3f9.pdf

  • Size

    33KB

  • MD5

    5e05a9a8d9f376a90675a192da8ea3f9

  • SHA1

    69c9dc201fbf3b223f3233924900a48f6ae62835

  • SHA256

    abd098eddc9cd8a7db4bfaf71460380cd78e11304695c44e89e376c9799da7fb

  • SHA512

    18d58e67ca59147f13637e0a2256eaac3ab1e58f197158559cdebb4f0f45ddf173327f8cf9fec6e5cfb046f9bf3329fcb64dc1218e904f73c92f689eafcd5e04

  • SSDEEP

    768:JrNcc2SkHvGsNXRa1E5iPXIdOmBx+NhOts3Z9:JryZBXRd+40+GOCZ9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5e05a9a8d9f376a90675a192da8ea3f9.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2680

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          ef72c6e50ec477a8cf83747abf1246b4

          SHA1

          9cae314571936cc8b350cb8244101843dd714ac3

          SHA256

          d3fb573d16fa4ff4705f39ae58b4bc9e192b30f3d1bab8191eb35a3e86cc59a1

          SHA512

          6b144dd0ac7c75d4505a6ce1492bcc80a12159b142b07bccc84b9cefec217f499a080c99b5105c1b6ac1a1da8a6c5d138595b24493b02e190a17d68a98b27639

          Download Submit