Overview

overview

3

Static

static

3

0257ec48e2...fc.pdf

windows7-x64

1

0257ec48e2...fc.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    29-12-2023 19:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0257ec48e2a10894f003fa44802f32fc.pdf

  • Size

    89KB

  • MD5

    0257ec48e2a10894f003fa44802f32fc

  • SHA1

    dc8d8b558829f1aa47bda66dc57c0a7a441711af

  • SHA256

    d65348d2a8d3371e208523d502c75c88b63356d10a6638160b5623501cb2e17d

  • SHA512

    eac0ee937396a7f31c2f863f2b8e532c6f2c40a5fad2f36328d849617c68841b558422fef81775cc4c813831c44d2b4b46a0607497278781c1e689c701e4e884

  • SSDEEP

    1536:VbyBJFvgVfmx+5Y6hUarfMgi4v5rNTPvSqMWPYQIqUoPneyhPo1jWRv/Z90NWspC:tqS12arzie5dP6qMwXPx2sSYp90URT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0257ec48e2a10894f003fa44802f32fc.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2348

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    cbf91a67e6b488acc413c5c8e52bcf70

    SHA1

    efc592d13576651499d97ffa1cda082e25e12eb7

    SHA256

    e38772b850c75a3cf373d60923fb836eb70259a62e2bffa68bbb082895bd16da

    SHA512

    13f8de7e1e0e315b1fbb5d3690cf284280deafb5a3871e53168325c58e49ae841b2321936b9bf5b9ab6fed6dcfaa466987971544179d2d3aaca71820dbe96c35

    Download Submit