Overview

overview

5

Static

static

5

100+ CASHA...TS.pdf

windows7-x64

1

100+ CASHA...TS.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    136s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-it
  • resource tags

    arch:x64arch:x86image:win7-20240221-itlocale:it-itos:windows7-x64systemwindows
  • submitted
    25/02/2024, 16:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    100+ CASHAPP DEBITS.pdf

  • Size

    3.6MB

  • MD5

    fb993d13cf97d74c99a0f597302b0ccb

  • SHA1

    f0dc2d7e4968baa41b2496e3d6b0b46471e3ae1e

  • SHA256

    dc9fd5437192d1e1bd5e70574da796c724dc24b5adf38838f69f919778fb6d64

  • SHA512

    7533cfce3a6fbe6fec9911fcd29fa0c26b64efd7b1d2c5f07e0e710a571de7d6d4c75f3374723cad12e03f01cdc3ad73d0f03675ce35b6a010ed8138bf0382cb

  • SSDEEP

    98304:MNJXdW7MJJADRhOrDB0Jwm50WS3Ygl3oUT9zKJj:MNIMJJqRsJGwm0RI83o09Gj

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\100+ CASHAPP DEBITS.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:792

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d3b7484fee7c645a0a8b538dcdb625f3

    SHA1

    9542e24df3daec5b66f96186e12873224ffdabd3

    SHA256

    6515d50f4c0d11cc61d76774d581412a0c8f4d067e258a89c77c55203af18e70

    SHA512

    faa657ac524d995fdef342711b83268cd059512001eae49669426a753520147541aeb973c618347e4ea709ac0ec1d55bd714af9c5965b93eeb8575f64de28376

    Download Submit

  • memory/792-0-0x0000000002E50000-0x0000000002EC6000-memory.dmp

    Filesize

    472KB

    Download