Overview

overview

7

Static

static

3

WX.pdf.lnk

windows7-x64

3

WX.pdf.lnk

windows10-2004-x64

7

i1v/zN/JI/...qd.pdf

windows7-x64

1

i1v/zN/JI/...qd.pdf

windows10-2004-x64

1

i1v/zN/JI/...im.exe

windows7-x64

i1v/zN/JI/...im.exe

windows10-2004-x64

1

i1v/zN/JI/...Sa.dll

windows7-x64

3

i1v/zN/JI/...Sa.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    150s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    04-10-2023 16:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    i1v/zN/JI/eWJM/MVst/qI/1Q52/uURq/QIPJ/J4Xw/J6V/CO/bOs8/GMV/N53B/Abqd.pdf

  • Size

    37KB

  • MD5

    2106b4662418345d1f9b6c4520c22910

  • SHA1

    fb263c98307a87ef9ab6c499befcf82d95c0a6e0

  • SHA256

    88047debdd1580ec5095313e5195e9490e1029ecba31a8f870d767731e17543d

  • SHA512

    a99042039cedfe13fc6fb67c0b59a08c7f0aeca6812a2dc60372e111f24b8bf09b2639ee1ef4214977b04c96caef5e9b92554fc81ce34d222ee47c0ef5813635

  • SSDEEP

    768:coZHfYvmC9yQLdEisA66Now0CTjyU//Svozsg/PY67szes05XHGF/pGe/ZoCd0Cb:coZ/YO6dX1Xrfszzcml

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\i1v\zN\JI\eWJM\MVst\qI\1Q52\uURq\QIPJ\J4Xw\J6V\CO\bOs8\GMV\N53B\Abqd.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1708

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a9ff973ff4d52d806657af991f904b9f

    SHA1

    79cc01d603ead46b16e3264ec9f46a9c3b165342

    SHA256

    13f6ece3de6c2e71115e6f18684c4616e77a3d606d6125e4849f6b0afc9a99ad

    SHA512

    43e9ad542a94a40c4714787e71778113de13367463e77bcc8ae8c108ebe056c4be91c6204243b961627194ad5780d0376763e4e76d18289d6690049305246350

    Download Submit