Analysis
-
max time kernel
177s -
max time network
142s -
platform
windows7_x64 -
resource
win7-20231215-en -
resource tags
arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system -
submitted
02-02-2024 12:21
Behavioral task
behavioral1
Sample
CDWinder Registration Form.pdf
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
CDWinder Registration Form.pdf
Resource
win10v2004-20231215-en
Behavioral task
behavioral3
Sample
CDWinder.exe
Resource
win7-20231215-en
Behavioral task
behavioral4
Sample
CDWinder.exe
Resource
win10v2004-20231215-en
Behavioral task
behavioral5
Sample
readme.pdf
Resource
win7-20231129-en
Behavioral task
behavioral6
Sample
readme.pdf
Resource
win10v2004-20231215-en
General
-
Target
CDWinder Registration Form.pdf
-
Size
166KB
-
MD5
737274e013f50d27fd865c88679ffadd
-
SHA1
60588ff5678329c978d0bd385de506f40196424c
-
SHA256
6fc231f90747f0d8c5ed668ee7376fb790e0cc5ba585ec49f3b0749f1d6afe53
-
SHA512
eef1f180b7d99f5d61ca61715a95bd24c11a458ff7bf7eeb9c4cea438d8d5d204d8a28f7b1c45e8bf2441d81637f2a6273654ae05dbd2842f3944e5996c6e54d
-
SSDEEP
3072:SQJX0qIikwu6fdzanKgcvLz//mMJjfVcr9dxpfA/QDaBglUn1V+CLRVS2pVSbs8i:ZBIikwu6fdGnKgcvLz//JdUZfzOn/+gj
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2144 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2144 AcroRd32.exe 2144 AcroRd32.exe 2144 AcroRd32.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5dd7820630718514b5c407e240a865d4a
SHA157eaab7aa103042ba1d1099ac5c98a427cf409d4
SHA25697a56672e1e568a09d08ed5900eb39571123700616e7133329699280b92cb6f9
SHA512476b157a28a25727ec8267d5e7aae8bc098620d85e5576d21443abf7c7055052a4dfd41228ab677d1a572f31dc90f1185cb0e4407d06aafd5aabe465fc08584e