Overview

overview

3

Static

static

3

0dd6fb0004...1f.pdf

windows7-x64

1

0dd6fb0004...1f.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    173s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 04:05

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    0dd6fb000405d26de6ec5a0a46c8941f.pdf

  • Size

    34KB

  • MD5

    0dd6fb000405d26de6ec5a0a46c8941f

  • SHA1

    0286db63d5c107b8e6e03cb3c1f8bfdcc5ca0487

  • SHA256

    45f3dea0c3f2bb2ad1b3928d6c1b56261b5bbad4d19d4cb75641287b90634d36

  • SHA512

    69894ccd7ab1242084009fcb6e0ea1533856b5254526f9e696d4f97693cd59f5e746d1eda74f476b49a766087160aad7218940137434f2dd8041bc303c5ce95e

  • SSDEEP

    768:4hkRbMd5VJrxsYls3xVdogiuH90yialll/XqHO7eO:ek1MXrDUxcNuHRVXIAeO

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0dd6fb000405d26de6ec5a0a46c8941f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2208

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          4c7bf6559aaffcc572795ec1c5876c6b

          SHA1

          77eaa1a90b6badf16a66db09b94fd6ce7e3de6b3

          SHA256

          4bc19a8f405de2618b46b8c25cbf098eb3dbe96f3a6895c018c71b44c1fddfc1

          SHA512

          e400046f62d659f845263096157caa5e741bddf8f64386a2dc541529473a6534c6c09f6d7ada4b09d3030a0563ffcef5e21c939051e5b94b5ce785d06f5f1c5e

          Download Submit