Overview

overview

4

Static

static

3

peoplescar...ect.js

windows7-x64

1

peoplescar...ect.js

windows10-2004-x64

1

peoplescar...ion.js

windows7-x64

1

peoplescar...ion.js

windows10-2004-x64

1

peoplescar...43.pdf

windows7-x64

1

peoplescar...43.pdf

windows10-2004-x64

1

peoplescar...05.pdf

windows7-x64

1

peoplescar...05.pdf

windows10-2004-x64

1

peoplescar...t.docx

windows7-x64

4

peoplescar...t.docx

windows10-2004-x64

1

peoplescar...ts.pdf

windows7-x64

1

peoplescar...ts.pdf

windows10-2004-x64

1

peoplescar...re.pdf

windows7-x64

1

peoplescar...re.pdf

windows10-2004-x64

1

peoplescar...ty.pdf

windows7-x64

1

peoplescar...ty.pdf

windows10-2004-x64

1

peoplescar...N.docx

windows7-x64

4

peoplescar...N.docx

windows10-2004-x64

1

peoplescar...8d.pdf

windows7-x64

1

peoplescar...8d.pdf

windows10-2004-x64

1

peoplescar...a4.pdf

windows7-x64

1

peoplescar...a4.pdf

windows10-2004-x64

1

peoplescar...t.docx

windows7-x64

4

peoplescar...t.docx

windows10-2004-x64

1

peoplescar...).xlsx

windows7-x64

1

peoplescar...).xlsx

windows10-2004-x64

1

peoplescar...).xlsx

windows7-x64

1

peoplescar...).xlsx

windows10-2004-x64

1

peoplescar...).xlsx

windows7-x64

1

peoplescar...).xlsx

windows10-2004-x64

1

peoplescar...o.html

windows7-x64

1

peoplescar...o.html

windows10-2004-x64

1

Analysis

  • max time kernel
    162s
  • max time network
    24s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 13:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    peoplescare/file/resume/PlanInfoCounty.pdf

  • Size

    27KB

  • MD5

    4777ebcbdc0df5b45860495e400794a1

  • SHA1

    43ce0375d89ea3bcdc40a14b6a1254512896c592

  • SHA256

    9f6cf43da5bd0fbf064d92fdd9da5cc64f2a999c02db4a84d081c96f49679f68

  • SHA512

    9d705a028f5b3e2fc9c79285480010ac66ec14ce6a5cab982a6f23374f7839db4ee5156638c6b4cab171606f02c26097da74580c4a88841f9723cf71e9e36310

  • SSDEEP

    768:tEGoUiMYGpREN34LuY7SB+b0FGZY5TtXR9yD9JUdZXywMbsYd7h93fG:tEdUisRE077SB+4FGZA6WdxHMN7h93fG

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\peoplescare\file\resume\PlanInfoCounty.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2536

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    92da0710b6b46845da3d8a487d3ea0d5

    SHA1

    bd345552abe1329a7da3c731808657b78ca83f80

    SHA256

    6d8035f83fca62dd34779a62fddf679f352155359cdfe6d120a0bde3468777a2

    SHA512

    0f1e59037958951bebc319004d48a4c27bbd18de68cf75cab8c81e072b06d0730bce0cd1e54ded7a4d127d524dfb65b0a5044c929631c76382bf6b5d17aa72cb

    Download Submit