Overview

overview

3

Static

static

3

download (21).pdf

windows7-x64

1

download (21).pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    48s
  • platform
    windows7_x64
  • resource
    win7-20220901-en
  • resource tags

    arch:x64arch:x86image:win7-20220901-enlocale:en-usos:windows7-x64system
  • submitted
    11-10-2022 09:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    download (21).pdf

  • Size

    5.0MB

  • MD5

    56d68d232f2e1539afb9df0fa57df302

  • SHA1

    213c227d958c462b482e38155968d057b5e3e4eb

  • SHA256

    2d85abd5aba31e442cbbfd7f4423a4e1e250501a52a75d69c6bccf6f7115f076

  • SHA512

    2506aae4ed9c3116dfd581d94e4b103031f5ae65ad3ac74d395348d53c6287ccc53959c4cadc1514d42298c3de0313f3f0c8a16cfe337640cf783f4c16a7380a

  • SSDEEP

    98304:fYe9Ygx0FdwXcL0q6OAa6Sze/Lf6FBz/C7W5L6N+Rwht2cMYYul+8RdPGfxn6Jhx:fF9Xx0FcY0qvqLSr/C7W1Rwhtv+8k63x

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\download (21).pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1720

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1720-54-0x00000000765B1000-0x00000000765B3000-memory.dmp
    Filesize

    8KB

    Download