Overview

overview

3

Static

static

3

0e5e6d2fe7...bc.pdf

windows7-x64

1

0e5e6d2fe7...bc.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 04:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0e5e6d2fe79f737ef32d46d3ed6524bc.pdf

  • Size

    121KB

  • MD5

    0e5e6d2fe79f737ef32d46d3ed6524bc

  • SHA1

    f7bdd3ec3f3ac0b7771a728b581202e963a2cbc0

  • SHA256

    abb207612f48ccfbd691bd89f229d176f6f0c7719fccc16f7b9065ace58e137f

  • SHA512

    323ecdedcd5c157c1ba3a5d2630704eeee2643e0a539651401c1ea2b40934d23fdce9441b718b5e898c7f60d4be56ca4933c08ac5607b2a5919ac31437afebff

  • SSDEEP

    3072:kVk5oUpR+3OkyTmTjZS+St1ncFP/MFCE+GRmm:+l3REgFS/CPjq

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0e5e6d2fe79f737ef32d46d3ed6524bc.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2932

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a483e4a636c7403543c94d1c90932d82

    SHA1

    e5203e19fca93909f0dd14e15f712d21085301a7

    SHA256

    b3154f8331c770de08ed22a95e3d34dd313f810e97d74437745fe8d927a5d0d5

    SHA512

    293189f14626d29d75ac1216edce5d14dd933cf54eb11222632122173829b40f11e6f700bb006b2a2756a64f643f1d7e0a37de6d5d18c9ad8c702ac7d74df367

    Download Submit