Overview

overview

3

Static

static

3

096eb1cd0d...f4.pdf

windows7-x64

1

096eb1cd0d...f4.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24/12/2023, 17:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    096eb1cd0d6fdc3618d55dd00a9485f4.pdf

  • Size

    87KB

  • MD5

    096eb1cd0d6fdc3618d55dd00a9485f4

  • SHA1

    b37da403aa2faa6eed4ffb25868deb57e3e417f1

  • SHA256

    227cfa5d00b113a6fe87c424fa0b3921805d51e159526625bdb7cc77cce7e823

  • SHA512

    b0c2d9af7d565b8f43aa9c6c4a36b7e8d8fc01a302ba71ac769197f106cad7235b2ef64bebda64ff4e0e9fa0ef03d6805ad7a5a787da2ed0d2083a869fcd960d

  • SSDEEP

    1536:XQLsbeRFo+sfxXNxQ1yBc9gyklza/iZ3B7Z+IOVWHKQxEKtqbWspORDh7:gCk6+gxXNxQ1J9El+/C3B7oIOgJxEiqm

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\096eb1cd0d6fdc3618d55dd00a9485f4.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1204

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c4b9270e5173399cfdaed4658744fb0e

    SHA1

    dd2e6ed80c92ab853d5ead2a70b1d9007728c9ee

    SHA256

    e5b2e5aa6dcd7883b5ffd3e94ddd248db7aa03062867984a117c43d2934af169

    SHA512

    60b32bab4d5cb3c962359dcfd5cb725388ff12af2ac48687bb1a3a891a83934b82f0979c165449fdc3e5c155f70f1bea40e695c1d2511098a845033429fe2af1

    Download Submit