Overview

overview

3

Static

static

3

0a65c373eb...cf.pdf

windows7-x64

1

0a65c373eb...cf.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 01:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0a65c373eb89f321e04a29bf52a289cf.pdf

  • Size

    45KB

  • MD5

    0a65c373eb89f321e04a29bf52a289cf

  • SHA1

    bb183f114579ae49bcdd784029476f5b2c5444f5

  • SHA256

    70c9825f270535f654062f926ef3b0ba07defc07290df0d4919e3d92acd579b8

  • SHA512

    ca72c6d83a0e2937cd6e0a0885f7b71ee1f406811087e4b7009b5c6d8d2ae707ea900ce1a582d1006a64bfc09e76469690281dd4baec5b73ae79ef338795c1b9

  • SSDEEP

    768:MisUlOlHrd61RzqCw/beUr3Ta5j88vcR62OV6s/m1TX0b+6Ody2NYSg2f08:vsUlgqoCwX3a5+s2OV6WADdHNYSHc8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0a65c373eb89f321e04a29bf52a289cf.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1472

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    083fb6b11eed6243044f9602952d96fb

    SHA1

    08ad93058b84370d80e415642d0872c5c62f4be6

    SHA256

    6f281e6679230b418fa4dbfa0afedeca9039f14a65e57b16a5ee7d79e8645ed8

    SHA512

    30217df77a03db8cf0704407e2dd7c95951fc54117d870614bc0825ae46a14f785fb58588994018bb5f847c9cd0602278ad64e2356159b9f957f90fa3a32fcb1

    Download Submit