Overview

overview

3

Static

static

3

0cf9318c15...b7.pdf

windows7-x64

1

0cf9318c15...b7.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 03:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0cf9318c158fcfbb4c6c34715a8b86b7.pdf

  • Size

    91KB

  • MD5

    0cf9318c158fcfbb4c6c34715a8b86b7

  • SHA1

    09acb9496c6f8d9d12dbc233c6ec348a0346e783

  • SHA256

    09607beaaf98493bac17dfaa7838ed9be6f9cd051945d23c5d8f0a0c5435197c

  • SHA512

    aeb4bab2133b948b9e1e6053db0f0c05184cd8b50bc37b7d2fb3dc235027238cce3d9716a52645952ba3514c102831ab5b6c18fa3eb4692c027dd64ba8114a61

  • SSDEEP

    1536:0LW0PLId3TwqWc0byfkygxJO2ylAHlHa3XciHOGrR6dZWYpO2GG1W58nbhHWP2S+:CjPLI2c0byfkPJxylAHw3MMOk6dw2GGj

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0cf9318c158fcfbb4c6c34715a8b86b7.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2828

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    cde65ee40b2d6a76a82288faae733d71

    SHA1

    a092e81d01ca84e1e5fd0cadd5d2ec8f696a76f4

    SHA256

    80b8845ee20a4a24f92fd63f4f705846540bd04838a42ab076aa53d1fb3892cb

    SHA512

    4f84b4808b315c18cf1c5c576f9a6f858d1411f12a140fc42ec272ad4c9f1ec7d851c7a56a97a0340e67727d6e72dd1ff8ff46c59f208dfc31400712e392d8f1

    Download Submit