Overview

overview

3

Static

static

3

00d9f841ed...be.pdf

windows7-x64

1

00d9f841ed...be.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    29/12/2023, 18:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00d9f841eda85aa8bdca90f2bb87e2be.pdf

  • Size

    89KB

  • MD5

    00d9f841eda85aa8bdca90f2bb87e2be

  • SHA1

    005a5f63b839c422ea0f6be4f267f138c8d78432

  • SHA256

    dd5b222ee698d9fdd56536a507a88d3ad02943d380acac1e0424d1d259ba323e

  • SHA512

    7b88596129dcd7c54c81b7a6dc1287241a64d8dee1bc385f0575604f2d3dbf079b158951898c39edf1e85977ef198713a9cb5e85baff2e996bd8cd72b360d41a

  • SSDEEP

    1536:WH6Mw5QkCg7GzdrOZnFOM39/kKoxc3dPjUnerW60EV4ZMRMWapOtQgZmuC3g0:PMyBCgyxXM3x3CcpoC0569tQEYL

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\00d9f841eda85aa8bdca90f2bb87e2be.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1040

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ceb47c848e338fdc04d699c1616ec34e

    SHA1

    fe83a176c119aae4d5d5469898116bbfd81d4b7d

    SHA256

    8e5af823d7cf95b6e15583479287f66ded4cee390e52c5244f92cd961b519feb

    SHA512

    9333edba1ec85898491950a55f5ef6578f5055c7a2e7b3f9b761597fa314054607f28810f3dc0dca4aa294fa4314cb7812b0120407b0f9e90f78f32222d11e51

    Download Submit