Overview

overview

10

Static

static

8

Campus\Exe...s.xlsx

windows7-x64

1

Campus\Exe...s.xlsx

windows10-2004-x64

1

Campus\Exe...us.exe

windows7-x64

10

Campus\Exe...us.exe

windows10-2004-x64

10

Campus\Exe...us.pdf

windows7-x64

1

Campus\Exe...us.pdf

windows10-2004-x64

1

Campus\Exe...AJ.exe

windows7-x64

10

Campus\Exe...AJ.exe

windows10-2004-x64

10

Campus\Exe...e.xlsx

windows7-x64

1

Campus\Exe...e.xlsx

windows10-2004-x64

1

Campus\Exe...US.exe

windows7-x64

7

Campus\Exe...US.exe

windows10-2004-x64

7

Campus\Exe...s.xlsx

windows7-x64

1

Campus\Exe...s.xlsx

windows10-2004-x64

1

Campus\Exe...s.xlsx

windows7-x64

1

Campus\Exe...s.xlsx

windows10-2004-x64

1

Campus\Exe...e.xlsx

windows7-x64

1

Campus\Exe...e.xlsx

windows10-2004-x64

1

Campus\Exe...ur.xls

windows7-x64

1

Campus\Exe...ur.xls

windows10-2004-x64

1

Campus\Exe...yn.xls

windows7-x64

1

Campus\Exe...yn.xls

windows10-2004-x64

1

Campus\Exe...s.xlsx

windows7-x64

1

Campus\Exe...s.xlsx

windows10-2004-x64

1

Campus\Exe...ge.xls

windows7-x64

1

Campus\Exe...ge.xls

windows10-2004-x64

1

Campus\Exe...rs.xls

windows7-x64

1

Campus\Exe...rs.xls

windows10-2004-x64

1

Campus\Exe...e.xlsx

windows7-x64

1

Campus\Exe...e.xlsx

windows10-2004-x64

1

Campus\Exe...us.doc

windows7-x64

4

Campus\Exe...us.doc

windows10-2004-x64

1

Analysis

  • max time kernel
    155s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    07-11-2023 14:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Campus\Exe\GestCampus.pdf

  • Size

    682KB

  • MD5

    f9c661e9a1c382cac57343b6124a282a

  • SHA1

    72c641c74107ba9883c8683ad4e6ce5edfede802

  • SHA256

    b83ceb60d076c0568c666e581ca5d12de4db2adf6a333c778b80b3781228c0f6

  • SHA512

    7497c07153162c7d57e16901f7981b88c3f147b274054a91798f49ff8bbc1cc890918afb677edeb8ecb240f65ccc6ea6bcf38e6076d271ee5c6af2033879ae4f

  • SSDEEP

    12288:chT7baMcinqyJoLODSlRRwfo2+mm6hbm+9CiH2upBCEGSinxepw:ch3XH2LhRwAa7SMHBCEuxepw

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Campus\Exe\GestCampus.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1144

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7efaec2d481907b747acb98c09e4dfc7

    SHA1

    9f9ee91b63d3e3f5ca35d85f3e52e19428dd0ebd

    SHA256

    9f7fc8475dffc9df692f0c760980f140bbf670e1b699e5079961c5e3eb4f8332

    SHA512

    1bc929b9030e843c31e7a057e53c017fa80c05f9cb7ae7e46393d447a125c0890c9211f883f19d9db39425cefe86fec15a069622f853e676173fc562e82bf4db

    Download Submit

  • memory/1144-0-0x0000000001290000-0x0000000001306000-memory.dmp

    Filesize

    472KB

    Download