Overview

overview

3

Static

static

3

efdc0930be...f6.pdf

windows7-x64

1

efdc0930be...f6.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    22-12-2023 16:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    efdc0930bef7bca7bb14180c4f4eb7f6.pdf

  • Size

    74KB

  • MD5

    efdc0930bef7bca7bb14180c4f4eb7f6

  • SHA1

    9eab476e833504c92ff6ed86c0534709f5ca9521

  • SHA256

    5f57e4ba1fc41d217ff286eb6fb130474f50c1ed1f22915b2493289608c4aa94

  • SHA512

    3381ca97214f1fafad2a3d2ec8fa38e0068870e636d2b9b8437e69e1520e6f350749bbe4ef872e28d7a1619f9ffe61829b69a2891d0c13727649c739869853ef

  • SSDEEP

    1536:W1Z7t85ZJimwtgH4AaM7zJiBQFFHmwYrrzl+lbsI9P/URjsDtlufPzfNV2yS:yle5HimwtgYEnJpqwpy6P/MwDnGhVG

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\efdc0930bef7bca7bb14180c4f4eb7f6.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2180

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    01d8d6fd8470d4e905d753c35f42867b

    SHA1

    92466c180ce82e11b7591363234592d04346f0ae

    SHA256

    56a4d8ca2eeb3138c4776bf571ef1eb3ec1aadf826f42959eb06405f95374fe4

    SHA512

    2d9b679db416c8805fabc4bb9712d9425d4360fa36b1fdf3bcb27261d3d036f115503b7fae433181df582ff77b13c5902cc74122ba6103c60d5743f9c41090e6

    Download Submit