Overview

overview

3

Static

static

3

0be7c6fcb9...b1.pdf

windows7-x64

1

0be7c6fcb9...b1.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 06:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0be7c6fcb9248ae970e3a337d76b46b1.pdf

  • Size

    83KB

  • MD5

    0be7c6fcb9248ae970e3a337d76b46b1

  • SHA1

    c35d8f80cd764ca2d4c65ee5e81dda73fa9d01f6

  • SHA256

    f619d864c8d7489a1de4a0743a05c7957a46f2660171aa9957d8a4831229e4a5

  • SHA512

    b1f58ad1ee790dd24992f8568893199f5f35ebf7cc7217ca6b33485300ed91f9df7dabb63a0c9991876acb15766b78d3ea14cb4c89438e5201c02837b8bbc4ba

  • SSDEEP

    1536:a+JaetGgDCIc3DrTbPcvwmiPNsLeuJ/OIlvqnO22ZlLyWkNpOPGMSN1fRW3H7g8z:arPnPJmilsLe+OI9qngPLXP3STfIbG8F

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0be7c6fcb9248ae970e3a337d76b46b1.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2000

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    483bcd11fb900b12c86caa4d219898b4

    SHA1

    0442ac40d3f96a794fe4a7dd0ab4e5391314f21b

    SHA256

    b1b60ffff61aa924d93f5dab66ddf0d701105905dc870eb4df7e346e22ecbab4

    SHA512

    3f819c9b115e546c9b883fb4f31bdedc9a36d0178ec4519c3f4ba4345985c8ebf4bcb436bbcaac3be915d458018ea79b315f17c0d952b40b670957ed65c6f3c9

    Download Submit