Overview

overview

5

Static

static

5

Demande Vi...DF.pdf

windows7-x64

1

Demande Vi...DF.pdf

windows10-2004-x64

3

Demande Vi...rd.doc

windows7-x64

4

Demande Vi...rd.doc

windows10-2004-x64

1

Demande Vi...DF.pdf

windows7-x64

1

Demande Vi...DF.pdf

windows10-2004-x64

1

Demande Vi...rd.doc

windows7-x64

4

Demande Vi...rd.doc

windows10-2004-x64

1

Lurons Pro...15.pdf

windows7-x64

1

Lurons Pro...15.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    46s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    02-01-2023 18:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Demande Visa Monsieur PDF.pdf

  • Size

    88KB

  • MD5

    a2863030a2e9fe8ced29b181388c79af

  • SHA1

    597862ce03ef9a6cc54726031355c0074812ebc0

  • SHA256

    f1e80d4120c8152f4d1ff48302eaf3c70e77e4feb8274da2bf8d01ea5e15eb63

  • SHA512

    f82c0fb1a419cea7e2ac111476e2016aac7a8cb28ffcb4d1e5fd4451cf414b7f2c4378a9e2a3396d3a1469f6ccacd4f3be1b324ef7eb28ad49cb0602d17c0d18

  • SSDEEP

    1536:iY0BuO9JCKY7fnEKzPeCLK/EV2B4XjpOcIRz+fs8KElHfWFiti+6bMFLfly1+CTI:iY0IO9JC7fhLeCms4B4Xj0jcsbwI0YIP

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Demande Visa Monsieur PDF.pdf"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1340

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1340-54-0x0000000076041000-0x0000000076043000-memory.dmp

    Filesize

    8KB

    Download