Overview

overview

1

Static

static

1

pdfcoffee....ee.pdf

windows7-x64

1

pdfcoffee....ee.pdf

windows10-2004-x64

1

Resubmissions

08-02-2023 18:04

230208-wnxtdsdb8z 1

08-02-2023 18:02

230208-wmftgsdb7x 1

Analysis

  • max time kernel
    8s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    08-02-2023 18:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    pdfcoffee.com_kapustin-ten-bagatelles-op-59-pdf-free.pdf

  • Size

    1.8MB

  • MD5

    7f93c98ce4948e1dbd4cf3de70913faa

  • SHA1

    0f7c41067a5e405317e895f42af3d22efdfce15e

  • SHA256

    3db64fd6544d23d58ee339d212bf72e193a2e61d2cf7cd466eebfed7f40b3e16

  • SHA512

    5aa70f627f4a46d5e860905fc4c3ae94316b8c27f79d0cd8e5194e42b74e7f8883be67991ec625a708c0fd8d2652edb2c656a3b5b5a20812624ca21ce362e8ac

  • SSDEEP

    24576:m2+2D6eIyHn68OWu1s4lBh1klJg2Y4WGC5ca/L0euB4eO/u1k62emL5hi2Off:mVS6eF68O5HhSSMGcs0zB4f9FL5zOff

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\pdfcoffee.com_kapustin-ten-bagatelles-op-59-pdf-free.pdf"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2040

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2040-54-0x0000000075511000-0x0000000075513000-memory.dmp

    Filesize

    8KB

    Download