Overview

overview

3

Static

static

3

0dac513e81...fb.pdf

windows7-x64

1

0dac513e81...fb.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    138s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 03:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0dac513e81ff9b6317fbfc084a95befb.pdf

  • Size

    76KB

  • MD5

    0dac513e81ff9b6317fbfc084a95befb

  • SHA1

    a44271bdec6680e8fe627589cbd728001ed16618

  • SHA256

    3474c09ea4741848934e76e08286c3c1e66f2313162e6cbdccf78cd41277fcca

  • SHA512

    ddac4972fdddfde9f17d8da112836b6e979d2a69fd87f52c9ad9d190da6b4c4733e5be16c99ffe19d5f0c770bc99ad370aafac282810f0cf824e7581d673325b

  • SSDEEP

    1536:kVzoDm1Uch/oKx8cBjQFYSbQb1aq6Fgw+3e+iIFsWwpOSu34ehUWbiprSbfXlN0:xD92J2cB0eSbQbXnjiIFLSuDfCrGPw

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0dac513e81ff9b6317fbfc084a95befb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2116

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    561d55486082753dbe8cbafdcd87afe8

    SHA1

    21a729d77241cc565fdcac7f888fe73b873037c1

    SHA256

    25e1cda6996c34e379f690f905a6ea5a5667172004f4a0eeb81fd1220901b11a

    SHA512

    e05d7c9fb96afd6a13c5121ccbf2f8f9b12ac39644ba6024cc651c73d8d46b930ea65037b9b2a996810eee2b7c9447b0fae560f906d1e3d52b05184b6be07ce2

    Download Submit