Overview

overview

3

Static

static

3

0ef6e5f853...f4.pdf

windows7-x64

1

0ef6e5f853...f4.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 04:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0ef6e5f8537f3b427ed0caa89852dcf4.pdf

  • Size

    82KB

  • MD5

    0ef6e5f8537f3b427ed0caa89852dcf4

  • SHA1

    32569e65846961fe166ccd6d9b3235570c0fcf1a

  • SHA256

    e612728f618390843eefc3607c4eccfea3819aeb465b177d1f97e3ea41132b30

  • SHA512

    ab9a295567f9d2d04b57a7dfe582c03098f88947403fbe4fff06044d96d3f984b09dcd7b229f3ce381eb1d893a80f279a8b5669affd42bb0789d384b159725fe

  • SSDEEP

    1536:ZdlUY3URGCEb+w8iR9X4AVK0ibuP19YwjRPgL2nbDUb3W8pOGoYjyIWYF8mdnETO:LiysCXDguPTDY6EaGoYjyKEZU

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0ef6e5f8537f3b427ed0caa89852dcf4.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2164

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1d53c7e04482363ba3ac2e12642c9636

    SHA1

    8e1a54524e18773e9d82158490d4e6dca86b22e2

    SHA256

    3a6c5eb64098adb61a270a63e2aea523d9eb392e5c77743bf4a30dea7d6a00e7

    SHA512

    71e7be99d1888a8312eaaf1b140e69711b3b877c8a9c906de34b98b1f9566d9dc353f772bac234e65ab79c772183b016fd95a639845dc60649668300af82bf98

    Download Submit