Overview

overview

3

Static

static

3

BriceBarcl...23.pdf

windows7-x64

1

BriceBarcl...23.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    14/07/2023, 20:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    BriceBarclay-Brochure-Email-2023.pdf

  • Size

    8.7MB

  • MD5

    ce036459bb4acdc9a556c8a6261b4310

  • SHA1

    515a559c8cadf93c6e58d7e48a53bd59e56f6055

  • SHA256

    ff2876024ba04f8b8d258ca79889801467fb1e7250a804e4892054431b27acaa

  • SHA512

    3c28d6cb6bae2e82f0f72c2312488872e605174a577d9a0452689fc89724216ef11109a4152cf83ca0d2dae4827f0f441910a9b5e7c6efd0f465365e79a55ea1

  • SSDEEP

    196608:Z4VBOSBcxPv1rKcpGR9yo3INsJjZkmsDOqZDdUKrB/8n3:WVBaPHp89BICJYDOa0

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\BriceBarclay-Brochure-Email-2023.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2004

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c8836fb4b678f7f0f28d0fcc7f466e4d

    SHA1

    0204b3281c5a84c88f341a971ae4cb43e74a102f

    SHA256

    0581b41a1feeeeff018d8c34a647934b9f0a0770ea7571de9986877fcf66f902

    SHA512

    d441ba7d96b59ae210169494dde9f9ee57b126e2c47f7921299b1ce283c72c186b32d3f70bc01d6578aac6d0cbf7fcb57a7ce0bd60742dc219e9f638c3bf31ed

    Download Submit