Overview

overview

3

Static

static

3

0068d62334...7e.pdf

windows7-x64

1

0068d62334...7e.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    29/12/2023, 18:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0068d623341d56313c396cfa6bcb387e.pdf

  • Size

    87KB

  • MD5

    0068d623341d56313c396cfa6bcb387e

  • SHA1

    1deacbd3ef0f85e70a1776ff6fb312cbe50caba4

  • SHA256

    c704698cd43153eb57b8d499e3a17fb62ddf5d79be6b1592e9e0c228d80f4182

  • SHA512

    e8295e29fcecc11b26e19d80e0eab9f27b5e8ff15bb834935306703115a6c6d35b8e53a03f3f94919b48fad8cf06743541c9cb6e7ba980e19e94704e20d6b5cf

  • SSDEEP

    1536:ITdJHWUFirxYHcw+NU/qM6n6T0LGRIEVJQD1cRP9IFuPAY5aXHtgWxApOGzWYt32:erFFirxYHsGyM6mV/cmZ9Ii52N53G4gG

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0068d623341d56313c396cfa6bcb387e.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2872

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    91cc8bf71177da770540e910ccfbff94

    SHA1

    c34ceaa88015f1caa32bb34bae0b2f0acccd8c5a

    SHA256

    91f0c7e523b8393f28a4cb45d74989889ca03e91e932133ef25449078866690f

    SHA512

    5ad01e529c8d93b3acc6ddb4a0674a60adaa7ea11c73d70a7c74531052769d60fbc3d5854c697d3b7bf2da1270a6a7a3a4b346c1f0b3b6788b92fefda75ec421

    Download Submit