Overview

overview

3

Static

static

3

0bfed72789...ea.pdf

windows7-x64

1

0bfed72789...ea.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 02:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0bfed72789d9926db6e290886df095ea.pdf

  • Size

    33KB

  • MD5

    0bfed72789d9926db6e290886df095ea

  • SHA1

    13f394369757f04be38489d6efae303de7590f68

  • SHA256

    fc65dbccdb203cf3766222df27307e86b3b9e8a41e020d2e0dfc547ce83d0687

  • SHA512

    f00c04ff9534302a7c554c92080dffb50b4aeadf459545b1bc0bfff9643033ae97d3b10394171c2cf3da447b3b31a3f5a7adb2960c5f74bdac060a05d727d918

  • SSDEEP

    768:/pWQqXraspMdT6R8j6Vy2yo1y09x+Dhac6UjynrOW1pmbzx:/5qX78jxW1F+kc6UjyrOipmbzx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0bfed72789d9926db6e290886df095ea.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2768

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e111a7f41729895f083cb1cf1d35bff2

    SHA1

    7af3b8661b47f9010d698be801e02bbca16437c7

    SHA256

    ac0db0c7bf9b80fe456f72ac56286e1a4db2446ff1bd22c29ce97d404aea9a39

    SHA512

    f4893b95bd3212b3141b09b0b8b18f6242ec2b48013113165664ea5718cc3147f48c024dd9984c5d73630d2dba4a83ca9fbe990afee09be1bfac8755f1dfd2ef

    Download Submit