Overview

overview

3

Static

static

3

0fdbe1a43a...15.pdf

windows7-x64

1

0fdbe1a43a...15.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 05:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0fdbe1a43ac156aeabd2bad8f78d8515.pdf

  • Size

    79KB

  • MD5

    0fdbe1a43ac156aeabd2bad8f78d8515

  • SHA1

    72d0ae99cc7933afeb66028817429f02e434d1be

  • SHA256

    e052d8073d3d7f31796d22ede1607dfba15a87c7d079c6a934135af63f98a968

  • SHA512

    193b69f538c5c0becce2538156ea725813785f4c6b48ebae694f7ed2aa9342545e5a351e0eae47cdc07e2dc5039cfed730c130f0f2d5cedd8d48f06cae24cac0

  • SSDEEP

    1536:a0cgHYPkW01RvId9avKU3pD+d+cx7MuHAfTpYNwqAsW2dHBuPjaWbpOBbKTqOu:5c8YPkJRvII3pe+vd69hO6BbKT8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0fdbe1a43ac156aeabd2bad8f78d8515.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2060

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b7747238791832a137b754577f2e4671

    SHA1

    255a85b5f737f3fde857ee9d92c7e881d7743aa3

    SHA256

    e7897e91685694b0c3d110d15aa02ea225ca7c79ae6478f0696b1998910c18f4

    SHA512

    fa45a332ce29ebd17b3798a0facd33d466ff17c60ff43e9949d806b5c42dc3647cab37e44c8b2d184423e6bff980225fa9af739b810829a87c733c94745ccca1

    Download Submit