Overview

overview

3

Static

static

3

05f093236a...4c.pdf

windows7-x64

1

05f093236a...4c.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    29/12/2023, 22:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    05f093236a063c56c5a780fec972414c.pdf

  • Size

    42KB

  • MD5

    05f093236a063c56c5a780fec972414c

  • SHA1

    a9d02b562c6ba9bd280383459f695c3c76a5f5f8

  • SHA256

    ac1a285dcbfab7d9853d243e8d24eb1f2e4a2705540edb10c79a5782eb65b3bf

  • SHA512

    bf60e978ab7c0027a7051a9efaa11ddbf63d944c2f260c6f376874b6efd86ca693b6787f79e06413563dd9ba37a13a1529b88475354c52b9e7aac35c04e13abb

  • SSDEEP

    768:dkUpYQtwJ6XFTvuoK1/KeyI/vctz1ME9TBPsr+jF14J1:ZtxLi/KetMtZv9TyW4J1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\05f093236a063c56c5a780fec972414c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2212

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    728f7a55fc21de67a1f0b0e1d7982018

    SHA1

    a20060744caa68d2c29b74123c8bcfe6c0b713ed

    SHA256

    9520472e3471af38919e29590fd4203d6ea6fca960368c51d36d29844616e358

    SHA512

    623609b84eca9f9ac0198c6ff23e63f7740113e64a2accab9b4bc5e6de860d250f1d05b4e396aa893c1b0a8a6df2e955b4e2c740d3af771765a179bb04613c8f

    Download Submit