Overview

overview

10

Static

static

10

wintaylor2...32.dll

windows7-x64

1

wintaylor2...32.dll

windows10-2004-x64

1

wintaylor2...it.exe

windows7-x64

7

wintaylor2...it.exe

windows10-2004-x64

7

wintaylor2...LL.dll

windows7-x64

3

wintaylor2...LL.dll

windows10-2004-x64

3

wintaylor2...er.exe

windows7-x64

1

wintaylor2...er.exe

windows10-2004-x64

1

wintaylor2...er.dll

windows7-x64

6

wintaylor2...er.dll

windows10-2004-x64

6

wintaylor2...te.dll

windows7-x64

1

wintaylor2...te.dll

windows10-2004-x64

1

wintaylor2...32.dll

windows7-x64

3

wintaylor2...32.dll

windows10-2004-x64

3

wintaylor2...pt.dll

windows7-x64

1

wintaylor2...pt.dll

windows10-2004-x64

1

wintaylor2...39.dll

windows7-x64

3

wintaylor2...39.dll

windows10-2004-x64

3

wintaylor2...39.dll

windows7-x64

3

wintaylor2...39.dll

windows10-2004-x64

3

wintaylor2...39.dll

windows7-x64

3

wintaylor2...39.dll

windows10-2004-x64

3

wintaylor2...39.dll

windows7-x64

1

wintaylor2...39.dll

windows10-2004-x64

1

wintaylor2...39.dll

windows7-x64

3

wintaylor2...39.dll

windows10-2004-x64

3

wintaylor2...ge.dll

windows7-x64

3

wintaylor2...ge.dll

windows10-2004-x64

3

wintaylor2...de.pdf

windows7-x64

1

wintaylor2...de.pdf

windows10-2004-x64

1

wintaylor2...40.dll

windows7-x64

1

wintaylor2...40.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    173s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 14:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    wintaylor2.1/Programs/Imager/help/enu/ImagerUsersGuide.pdf

  • Size

    497KB

  • MD5

    2aab2678fdc4277aed6def001bd1dd9f

  • SHA1

    e6539b55f1c1346948f44029d8941457e79c192e

  • SHA256

    b8d9f9872828db6aca5b5957007615a5a1a6d32e957ce2d283a7f27b6a0596f1

  • SHA512

    a19a74a212609a16286b6068a930d414774a69c89642eea1df028fd053a50bf2578f141c8440d3e32f4d7205bbbd7611aa577ccffd01d8993dd23c2416272b80

  • SSDEEP

    6144:SOGCx/Kb41ag7yWAW4bPOPg2izBJgDuzivkB5+OpQTa6PzKPhARStAv5:1dOy0WAHPM5izBwAh5lQTR2hA0KB

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\wintaylor2.1\Programs\Imager\help\enu\ImagerUsersGuide.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1524

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8c0a0b47adc7726a271b71ec1fe808b8

    SHA1

    fe663bd218cc021f557a14ad1c70c0f79f625c00

    SHA256

    02617fe57ad72a3116213f9a1dad1ed5fbce8adf04e16fac7bf6ad4d4974d926

    SHA512

    612db4ced258dc1038a1a63bbc5890a9816d81a8cd2adae2f0610bb952b77d22ae35dfe5150b3e822584e824bfc9cf6decbf87c70baaf2efa0cceb12598dfcf5

    Download Submit