Overview

overview

3

Static

static

3

0e65ae494c...0N.pdf

windows7-x64

1

0e65ae494c...0N.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    12/07/2024, 23:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0e65ae494c5e5aab1ea28b937faa0550N.pdf

  • Size

    152KB

  • MD5

    0e65ae494c5e5aab1ea28b937faa0550

  • SHA1

    dc69951e82d4f792c63245caeb856ee1025ecdef

  • SHA256

    5c28a8aade00b2a5e002e6d3c4014dac26373429fb88b396cf0053325e0ee8c8

  • SHA512

    a3f6a8b99593c81b992aceaa2355cccb7fceb3fa9f194a9dee52633d78f103b1472038272c616c4e28999659764d919ad95652052f6503115475b681cddf1676

  • SSDEEP

    3072:jWvr8R5JucQkEGv5A5EhQF8e4Nznp1NYcy6QennmGJn5cRU/dga0XeF:jbJucQpqACmGnbv2mQynmGJn0U/ddMeF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0e65ae494c5e5aab1ea28b937faa0550N.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1688

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d76aa32436f9058ac1ca0cef6f0b9ff1

    SHA1

    b58effee481f56cde9591a9c36a2c156367ac2ca

    SHA256

    c93adf799cd0f818f796445118f899108bba7bbd86faf53a2c9efd04abf54bd4

    SHA512

    0f8b4d0cef411bde40e34eca3daf2fe7798d112942e1a4f79b373dae999f111faaf6ec298095af4b43fa49f128c7ee0dc8a4820da6aeea4d9a0b1258dd252456

    Download Submit