Overview

overview

3

Static

static

3

0541e088cc...8f.pdf

windows7-x64

1

0541e088cc...8f.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    29/12/2023, 22:10

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    0541e088ccc54b82579756a824251b8f.pdf

  • Size

    35KB

  • MD5

    0541e088ccc54b82579756a824251b8f

  • SHA1

    6f82385e3800fc83265ab166965ca7d290402316

  • SHA256

    026925084557c8788782b1c509cfdc536020f43c8e57fd108e2ab6a1c62f3fb0

  • SHA512

    c93c4e1cf37ac1887405d77b83087c5257d3f5286110068fece55cf54fcd02e45d40fc43d6f59fcf62023b6c9841c576fb7cc6baf7c3f0ff785a1bc57d309e6c

  • SSDEEP

    768:Sx2CdZBPg/TsD2fv+VXQdUaU9jUVT748kGDFVxmp:SYCdPIfv++UTSXkGDRmp

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0541e088ccc54b82579756a824251b8f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2524

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          0dfa93faad0647018f84e5ede3c39526

          SHA1

          d7530057c9bd514ef0cfca4a2932a4acb63cbef1

          SHA256

          913633f35d04e8cb1ee8fc023ba46a8e90523a10227cd3ae6a60f6c12a2f70a5

          SHA512

          37bca7a861884b2b2c248fd011b9d793b452bd24453f693b7fd2e8cd25bb5a8702f1fc9ac9026b4da643d078039aed664ca9cb6543ea0d43942a3a1a74782664

          Download Submit