Overview

overview

3

Static

static

3

0f6b68856e...18.pdf

windows7-x64

1

0f6b68856e...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 05:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0f6b68856ea5f21ec14fd724703b7a18.pdf

  • Size

    91KB

  • MD5

    0f6b68856ea5f21ec14fd724703b7a18

  • SHA1

    27831837331025c34b9f22394329c7043294757d

  • SHA256

    216f38ed704f4e02a7b532a4153b94be515e8b21d387d1a515827bb46f3798be

  • SHA512

    70ed35160100da81781d343073ce18e4711659a120227c133c0dfd77d210a234ccd857b9ab3b48dd116f0a9fb52455356ba2f5e89598c8641d55bf4834cae414

  • SSDEEP

    1536:I4ojnf1qmK5SGR9UyPvn9tUDiDNaosWcpOm0LPt+dqAcDW6u06uhjcNl0myzvf2:cjf1qXSyPfBNa8m07t+dqAcFv6Ajcjz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0f6b68856ea5f21ec14fd724703b7a18.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2896

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1485578835a74152386f7382eafc2df4

    SHA1

    6efff77a1a22f8c37f309f9fc8eecffeb0b02429

    SHA256

    64f8941bb33aa3762cc731cc7093b35c8d86c4917e60bfb1c5d69bc7632566e7

    SHA512

    5bb6407df9929d8339fcd942a9ae091fc74adc9da36c57a3c81c77cb9630f5e1e9cb4f1e415ce3840e9f474f2d66d11e09fb3397efc7db464d6cfd57f392874d

    Download Submit