Overview

overview

1

Static

static

1

iNVOICE 1008574.pdf

windows7-x64

1

iNVOICE 1008574.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19-02-2024 12:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    iNVOICE 1008574.pdf

  • Size

    443KB

  • MD5

    8633468dff05800b12755a4ecfe06212

  • SHA1

    8b1ebd64d9d7db74d23ec30978d9d60196256d90

  • SHA256

    a84a5de28afeca6923706949364a24e04c83e002b9abc62758b6410ac4d9bbe1

  • SHA512

    cb1de693516b94ed18d214d4e6dd51d607bca26213970ce735c83f5c17e816b9e26c46debaa07b76376c4c019c9af59457fa0e7707a41179ff1031618e6bf2e1

  • SSDEEP

    12288:xepo8VY5MruY2vQtQOq4n/9/NsVvjtNYofv7SXd1QeS:spo0TrIvQh/tuVLL2bpS

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\iNVOICE 1008574.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3008

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1a616df157be81e6e0c0f7b2bb2015ba

    SHA1

    3e895b4e4366ccd61aa99c3af020161e2cb71e86

    SHA256

    8cfd2421acb184d5720d9badf5cdf48fb99770950725bf489fbcd32afeb57ba1

    SHA512

    f7a3f7f2fc0216403c99f4088c62b7091dc4510e9f346664c126dcba1e113f1700a60b97d7df53907c9e1972509ca6f88840ae46055c1854280491f186fd8792

    Download Submit