Overview

overview

10

Static

static

Swift-pago.pdf.exe

windows7_x64

10

Swift-pago.pdf.exe

windows10_x64

10

Transferen...co.pdf

windows7_x64

1

Transferen...co.pdf

windows10_x64

1

Analysis

  • max time kernel
    149s
  • max time network
    101s
  • platform
    windows7_x64
  • resource
    win7-en-20210920
  • submitted
    23-10-2021 08:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Transferencia-Ci banco.pdf

  • Size

    1KB

  • MD5

    7193fc11039913b62e2252f801a276e8

  • SHA1

    4e4d3061469ac41fed98935fc7fa551dd4b235f9

  • SHA256

    0fa752460de8ed8c0005e24aac53b93ec9eeb8950757adb663bda78a76375a6b

  • SHA512

    187a8e3b80e20e5f991a95db656a8ac4448239fad45ae8e64affcf96f19f54210dba98ccb4dccaa8e33196e3f1d400845b668b242aa74dcb0afdf944cda65360

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Transferencia-Ci banco.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:524

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/524-54-0x0000000075FC1000-0x0000000075FC3000-memory.dmp
    Filesize

    8KB

    Download