Overview

overview

3

Static

static

3

0bf08fe7a3...58.pdf

windows7-x64

1

0bf08fe7a3...58.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 02:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0bf08fe7a3d6d6a1691cee1e1cfdd058.pdf

  • Size

    16KB

  • MD5

    0bf08fe7a3d6d6a1691cee1e1cfdd058

  • SHA1

    a8aca768acda31914bd2f7ccaff81e344deebbdf

  • SHA256

    8b43234287dd5b9b1c035d21135a2f2ad5c77f42bba21567796005532aae463a

  • SHA512

    6fc36ae5bb15cb532d9fe66af10c994e35c9cb48eff090883f0a7f4d2ae548bfc5cf2bb9653977a04859aea21003c63128b2d8c5acd947e06424cc3bf1ba5936

  • SSDEEP

    384:Vz5zHDz1F6aBE+BlAwaJrdSbY6jdf9zGEpSxrCfYhBuZNrK8fQl9YN:Vzljz1ACE+BlaJrdSbY6jdf9zGEpSxrg

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0bf08fe7a3d6d6a1691cee1e1cfdd058.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2196

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    cfdbf21a1a97ac38c516339329c4dc2d

    SHA1

    45fe89899bca50de5dcbccb48316d4efc3a0073e

    SHA256

    37f78f5df8db211a1bb4f6e74c7271a43ef40db2cbe13d64b37609f63f1a276a

    SHA512

    53e153937b9775ed968bae99e2b9589a4bb6f7224a0fa86daa038c4a98de260e0c12e851bdfc637630319151db8435ae93d42f5aee54b1a2693f810b59943e38

    Download Submit