Overview

overview

3

Static

static

3

fbd6e0bb6e...b0.pdf

windows7-x64

1

fbd6e0bb6e...b0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    28/12/2023, 22:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fbd6e0bb6e45cda916f9458ca363ffb0.pdf

  • Size

    78KB

  • MD5

    fbd6e0bb6e45cda916f9458ca363ffb0

  • SHA1

    307b3db1c762e4eb98f2fba26d7c4ed35b5f916e

  • SHA256

    4f72ee381e7b96a71e6698094f10c8c7975cd107db0af8c0f885ef82c0c7614c

  • SHA512

    7f923d21c2b68b2991428d87e11d0f5f2918d7f5b5167d7c52788caf090d8b6f05fdbceb204829e6868a482f416786e3e579e232782b345b506e9754436aeee5

  • SSDEEP

    1536:0cb6AYziveoNOdr0inn4MwTZXsrZTqG57jum1t9W+WHEXwpxQaxPSW8pO7cH8:tEdoZXsVTqafvt96pxQCP57V

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fbd6e0bb6e45cda916f9458ca363ffb0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1564

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    815a8ac02f9aea51a06a23a6e05f1bb6

    SHA1

    875be1f0dbdcfef6db06b2d00be54ab8cf6656cb

    SHA256

    5b8b6ce1b7ea49f4ddbd250061915d07aa8795a2cbf787ec61fc275ffa722d70

    SHA512

    b4423b257f454e27c18a202e131c3d5bee7d29589c02276afbfadf3ff1731791f2c45cc14c0032eab2b9aeb6585344048dc7c198ea002a1ec8f534384dba738e

    Download Submit