Overview

overview

3

Static

static

3

3b0ee1671b...03.pdf

windows7-x64

1

3b0ee1671b...03.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 20:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3b0ee1671bf3dacd456782daabeb9c03.pdf

  • Size

    84KB

  • MD5

    3b0ee1671bf3dacd456782daabeb9c03

  • SHA1

    ae016d556f8e0fb3d8e07f1045243f6cc859e385

  • SHA256

    99137db4557f63f104ae291c5573394dbfd391f53b026f916d08593c123461de

  • SHA512

    47070804df793f0a22d67a2a604f5f5666075bf55dc4d192eecb200a641c779377ad2c478469ab3ebc83239433c784e3ee9737e35212db4188c5bacb0aed35a7

  • SSDEEP

    1536:lKeH3npVR+KP6Mzq+ug10gexSNMbiHLSRLKZU6ylg8WkNpOPIvWmMnRmBiCWYVXD:3XnjDP6M4geMMbijUyPIeciKXYwCGd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3b0ee1671bf3dacd456782daabeb9c03.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2264

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5615f4d7c8b5babd34f99db2c64ebbab

    SHA1

    51b8d45ce50407cffe93a7dd22ed2a6f9aa93e2b

    SHA256

    9016f5c7e6a0afda48ae9f69164c0ef55a6f02c803ecbd77c8d52a87d63575fb

    SHA512

    976c531ba9284c4632a9a7afe6851db3d18ad1320e027e046163f06cedf0d8e32f23541fa8567338c661a36e7ccad7985e894ff1368e2023327d4f97b76a875c

    Download Submit