Overview

overview

3

Static

static

3

0d3f9f0a40...60.pdf

windows7-x64

1

0d3f9f0a40...60.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 03:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0d3f9f0a406ff902b290cae2677bb160.pdf

  • Size

    71KB

  • MD5

    0d3f9f0a406ff902b290cae2677bb160

  • SHA1

    c8f40a8a8b4c35e14eaad97340689f817cc76924

  • SHA256

    59f57cd03ef64168e02cba7ea654b5e50cc739fbcfdd63470a85cf9f8b4a96bb

  • SHA512

    f21849bf1d626efad7430a53d0e2bd2a58fe4bac7fea9099d69ade1f35f164d199a20802a8665375c79d820bdd7cbf4516a534c0560650142bfd694a76ddadd4

  • SSDEEP

    1536:ftzik/gNEkIvaJKWRULcmzh/tgWGH6tJiyx4saS82JblgYU+FC:lzcNESAMLKFggjHesaSLJCY2

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0d3f9f0a406ff902b290cae2677bb160.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2940

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c3be878001cae5e10ea50ce1ea2de1a3

    SHA1

    c0b5232dbc6568d3b289e2e00fd8b914c24dbf16

    SHA256

    673158e6802721bba6038a64294639f9b36ab363fa1b085631a4ac1b525588c3

    SHA512

    d56748bcc0bad01291030775c892a5f6e114d6b9f33b503d50449c53237cb470615f8e88a0726a34db0a5c1a98d59653c5cf3e976127c7b9d4601c84e44e4e77

    Download Submit