Overview

overview

3

Static

static

3

0f2e7d8755...d9.pdf

windows7-x64

1

0f2e7d8755...d9.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 04:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0f2e7d875556a45e69414b1791a551d9.pdf

  • Size

    88KB

  • MD5

    0f2e7d875556a45e69414b1791a551d9

  • SHA1

    871512ffa3c691fe91882ef9c611a4a2d575f6c7

  • SHA256

    39a37ae84f45142a8e974df6dd0950c564d78a6555da6b28fab2f8fc4176deed

  • SHA512

    454571b3818de31965a6379cf99c9e966a0c40e072580d7e407fd755175d5022e423ed2207601bec1b9703ae17d51c9e49dac05388a505ad7b2a4c50223c7001

  • SSDEEP

    1536:WiikPigqjkagK8eseIhOMDu2JOocAdxiGiSkxusfrUdSG/sqIoErJWT6PM4WQpO6:55iJksMy2JOt75xVC/sqUFPMnCv

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0f2e7d875556a45e69414b1791a551d9.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1244

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    055e2d203ce7b82d146b7398a759ad94

    SHA1

    634e76751534ea2ad8ae35fc31d0b065843db206

    SHA256

    2ab78e3bf9fd7d69a74fa45c53bd3f287d19b2d4bf6e4cee0979b931e8f5a8c5

    SHA512

    228eb4faa096fc8b790b05eb312dc667000c9c770c902079157ca4bd70dda4672869c264f92e5edfb76f52fc58861b7f9e0467be3ae5cd8a4f637d37e42cef09

    Download Submit