Overview

overview

3

Static

static

3

1. CATALOG...RS.pdf

windows7-x64

1

1. CATALOG...RS.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    15/08/2023, 21:19

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    1. CATALOGUES STOCK CARS.pdf

  • Size

    3.4MB

  • MD5

    41d92030acc732d07493655c8db38e2a

  • SHA1

    7b94e735892d1cb785c02c64685566b6ad1e8747

  • SHA256

    683325bb23f4728a48864816d8c393475b3ba0eebad3d5270a96d4f44c3e59fc

  • SHA512

    d9ee2f303adaa7eb7f2d1f9e30a26edd2eb5f89007b7dea2c1995e0b6d47238c6fd2ea9daa88351595b8a6056f32c54994827936a3a7d1ad7dac091efe6c66c7

  • SSDEEP

    98304:swvH/nxtEmCVpB9If8YmDyLww/aO7Sii97TSt9:swvH/nsraUAMw+97TC

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1. CATALOGUES STOCK CARS.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2524

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          4b64414949ecfb1d43985856029c68c3

          SHA1

          83f93f4ed61c216976942ca762fd4da9db929ec2

          SHA256

          72200ce2e8e12deb5d176bc1bcc95627ba9b6fa090561c59a78265f6f03581d1

          SHA512

          a31d4ebee91afab18902f2f466d9ace64906f03bb246bfa0600b8d4858c06824a2af1e7dfab4afbd4ba268b8105592c5742f68b828002597feb59f5fad01778e

          Download Submit