Overview

overview

6

Static

static

6

05e3117b46...c7.pdf

windows7-x64

1

05e3117b46...c7.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    24/12/2023, 16:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    05e3117b467dd9b54439a623e69926c7.pdf

  • Size

    61KB

  • MD5

    05e3117b467dd9b54439a623e69926c7

  • SHA1

    e6bd9ffa12d8159be2f106d05a45855eaeb9b7e7

  • SHA256

    94fdd2f5c5b805dec7c620dbf190d267a9d596c5715657d072aba4ae7958e693

  • SHA512

    f7d41cb56e3cabe10485a1f2cecf90e1b8747fb8117a03ffc0f3d07038a4e6deb6b925651d556c08bfb211f6be72b091209534de9e92cfe05809a275e393444f

  • SSDEEP

    768:xH70IkIn6A1yd/VKOoMVISTd0ZHuAv4/4u0aF9Wr2slXisS07Pl8RdFCgJB3bZmk:xHu9AS9KOoMNO4/4uDY3ERd8gBLoRnC

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\05e3117b467dd9b54439a623e69926c7.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2916

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    71f2503f246e65581073f849f7477e22

    SHA1

    58b52c361fbf31467f9dbb065a35737547ec5c7e

    SHA256

    bff4e3a59b5b2ec036695cf9e81c5582c6a122c0e762c5423331d62cac3f1455

    SHA512

    ad4a33eae4bcc4e47ced79da5d827c7ff2b475e1934e1fc66a79f0fd4a726c13ef41018e1e33175f4417e1b5d175a945d314d0a4c4517d134c3ff8eecbebb3c7

    Download Submit