Overview

overview

3

Static

static

3

05b4d29664...3e.pdf

windows7-x64

1

05b4d29664...3e.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    29/12/2023, 22:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    05b4d29664070f41f96edca08fb1743e.pdf

  • Size

    91KB

  • MD5

    05b4d29664070f41f96edca08fb1743e

  • SHA1

    a6df45fe640ec4de48d73883ddf12791e85d4fff

  • SHA256

    1dbbd3a2f9a11cf53e8deefd10cb2c7efa1305633895c4a9eb05b8b5421624a1

  • SHA512

    8ba9d91b51aba5117d2589d749fee3ba65f8617f1c56fe87f7ae8efb7cbeab8a13d280c40c28f4517f43aa963bb615d58f4dad56a8904a2df3a4dfcbdc4cc6de

  • SSDEEP

    1536:IqKl/fnTogY4plFV8sNLy9rKxOir5MH8kZ8pG3BE/lKCA04pmYWypOlWWx2WvP1z:yl/fMQVSdrKxFl6Z8pke/lKdpmZlD2W1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\05b4d29664070f41f96edca08fb1743e.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2216

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    320fe55cfc07507d68951c2f39398754

    SHA1

    8c11504207464119e4d81d5492005226725ab1db

    SHA256

    87153cab7f44bbcd541637aa98cf2a65f615a3ffc623929c7f3fc32679810f45

    SHA512

    20381216315c1e9365c2929e829149417ed553113dafed7e370d8e183b1b843e8fe512b18b8939dfab70960fb2a93cbe3ee52bb644b2e54c8c08fe1d7c9a7683

    Download Submit