Overview

overview

3

Static

static

3

09fcc1384b...48.pdf

windows7-x64

1

09fcc1384b...48.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    127s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 01:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    09fcc1384b6784a25be4f695eda1d648.pdf

  • Size

    42KB

  • MD5

    09fcc1384b6784a25be4f695eda1d648

  • SHA1

    5bca039331a50230e5a8c485596ee3f05616ce4b

  • SHA256

    e7f71460ae670f698daa5b0689f80222af3322b2c491cb659db070dd0c46acf0

  • SHA512

    2e126953be3cc7710d2c45a3745bf1090a2023b4098400677a4332f2c60642ec4750e02f805db728343498608b7c9bc0244b7bd4e5ce71893c692916ad1fca13

  • SSDEEP

    768:WyC2PgvSb/lRb6jf2yF0/r/xkTsoKXWWUaeglfx5ZcEiYcEpXXU:Wn2YvSbOIj/xho6TUOFxjccnU

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\09fcc1384b6784a25be4f695eda1d648.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2248

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e74d23e5ed21d0fb56bedb174dc40c25

    SHA1

    d0df121c31f5a282ba4af0cad419f306bd161f7c

    SHA256

    6accb6b59a952265279583a1c3f183a1a53a8fd2b58877fc6694d5eb9783b59f

    SHA512

    090df257c85c61ef89b52e6e943a22ac8890d8bdf4e26c2599061b5cd69959edb423583f32e52a0f0df16349e49ad55b1d2b3f7be2d552342c718baf2863fb26

    Download Submit