Overview

overview

3

Static

static

3

0d4d9a7dc6...c1.pdf

windows7-x64

1

0d4d9a7dc6...c1.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 03:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0d4d9a7dc6c0199682a91f25f2054cc1.pdf

  • Size

    89KB

  • MD5

    0d4d9a7dc6c0199682a91f25f2054cc1

  • SHA1

    ee4fa139c78b93cfd21f66cf77fcb5b7a8293d21

  • SHA256

    66546ed5b87bcc0bdc4f55cb31b1f6938d639779488c29f4f7663fb68f3a8312

  • SHA512

    80ae34011d56887e8f716aa5550f896482e982863031c04388dfd879fca3ddea9277414663f8cab8422360b0cdc475739cce48695bc29cebb6eb940bd44d735a

  • SSDEEP

    1536:EJ9MavwfDV3RAEdJSRh5PsGspuO8b80eoeeK70aj33WepOZrWLO5mAMLay3:EDvwRpdJmh5PsGsEO0Kb02QZaO5mAMZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0d4d9a7dc6c0199682a91f25f2054cc1.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2416

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b1e2e7cff77fea9d606882047db7e21a

    SHA1

    35869ffc18d71c3f93eb313a76d8494d1d71d71e

    SHA256

    304e022e09509654bfb4400827bed156c6164b8932d2874dd43dedca1fbac525

    SHA512

    f8d5916b1b9eed7f252672e30f18d2d0088a6c0c45261623da7e9806fbee3be7f7480f03577ef7fff139d1e764d42b1baa7507c5de8c61611e37de77bb8593e5

    Download Submit