Overview

overview

3

Static

static

3

IREP Sale-...4).pdf

windows7-x64

1

IREP Sale-...4).pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    20-02-2024 17:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    IREP Sale-Leaseback Intro (2024).pdf

  • Size

    148KB

  • MD5

    c8f9898baa751e89f10f483a82b33a3e

  • SHA1

    4f7b5c61a9cd845b011ec2531e5863f6f14bc58f

  • SHA256

    10f22caa5a109d81fd7c83b7945d383ef3c4c348f45af684aec3f68dcc38c1c6

  • SHA512

    913c1c307f32e834a52644775232c9874918190d023e101313abc7af7ac0c24bfd8d2c0fa360f0c1ded3a762254d3a553a656e792544af8449860c9c289db2ac

  • SSDEEP

    3072:e7Rrr/5tHXJdRFYGz8Noe38KQfWHOEoUJv7o+lxs9Oi:ebtH5ddz8NoeKfKOnUJToguT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\IREP Sale-Leaseback Intro (2024).pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1768

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    662a3f91fa720ecf82925fdb6410cda1

    SHA1

    4e02937e30f7885b94bec5a1929ed7743284109e

    SHA256

    a89dfb5c28670014e24329e8377a120797fabdec5e124de8d2e9aa0f8ac55dab

    SHA512

    85ca27fa009639a92c28d94918583d0ad98b274611ea6eca282d2fe747a1d9f6388f29eeb70d158675cf859cf644ec10d3ba95823fe668c8bc1c658b69ddd5ca

    Download Submit