Overview

overview

3

Static

static

3

6e03c9f0f3...78.pdf

windows7-x64

1

6e03c9f0f3...78.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26-12-2023 12:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6e03c9f0f374e7f37bd2c94801b58a78.pdf

  • Size

    149KB

  • MD5

    6e03c9f0f374e7f37bd2c94801b58a78

  • SHA1

    dc0f4510cdccf9cc4d46abc5e938c3ce35b14dee

  • SHA256

    b8dcdabf78b3b16ca15e46ac889e0cd72c092b221e6eb02adeef7a157192ce47

  • SHA512

    67b68432544529c3b3febeb53e38a502b62cce39c20259764af53db67fb5ed52f70c0433c1697cd55317eeaa011e18071d561575eaf16f426e4b2b91f1eb8f87

  • SSDEEP

    3072:4mcZ4dOHz7wU1ezSQnaeGoi8ki7KT0N6DkIrtVPBl1TI2Czc/CX:YVczgdZTsy0N6DNrr71+g4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6e03c9f0f374e7f37bd2c94801b58a78.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1180

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f0d490f47d7bdaef3f38507c3a979ea7

    SHA1

    6d506011b5bd37e25a5bd6a1222035ac8318c9fb

    SHA256

    2e502854782664228cb0e849b67172986baf957fadf49c401f2e9204805d8fdb

    SHA512

    0f908f683b8b64582138c315bc6e3e574381720139636d42172a9641c6bc0c7c515afe1f4b49dc1b9870a5ac2af1520f2dacb88b97a9906b65c031f1bb3e5f52

    Download Submit