Overview

overview

3

Static

static

3

0eeb52c494...f4.pdf

windows7-x64

1

0eeb52c494...f4.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 04:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0eeb52c4943ed2e75c25cd7abcd642f4.pdf

  • Size

    80KB

  • MD5

    0eeb52c4943ed2e75c25cd7abcd642f4

  • SHA1

    b7ad0a1ba7e296ce1a8e9484bfd9f980160b848f

  • SHA256

    1609895c568fc7ab938a39f3c5b483a2393da45dce00bad95858db60fd3ceb82

  • SHA512

    1e331f1f61c50b5c40dfbd6233f6d9b2e011786bfb2e335969cc6834bb59e14765fbfa18d04f8b60b65ae3919d0fd126fdb6c046ce220dccfc09fa6cb14aedad

  • SSDEEP

    1536:XZPDv3gjE8gxiV7USx/jzPoyY9fy8VL83ucyzzwVWP5uiqXASYjoYWspORlK9:6pYiVNx/nPoXfJuu9zwmKsjozRi

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0eeb52c4943ed2e75c25cd7abcd642f4.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3044

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d4e6481abd8862b7b3016b8ac97dd230

    SHA1

    1481df55738221604435dc43010d5783d4ceaa4e

    SHA256

    00305012f12d5b0067e70c773f91f02b62bfe5e84f40e2ecaf5ae2ee768140b7

    SHA512

    3681fba1f24c457196f08d836e0b809b49673e4546f4a2838d24987159603daf5ceb8c7936e85222038ae709f4327e4323bbfe884284ab6e67a3b52138ab1439

    Download Submit