Overview

overview

5

Static

static

3

[EXTERNAL]...03.eml

windows7-x64

5

[EXTERNAL]...03.eml

windows10-2004-x64

1

=?UTF-8?B?...?=.pdf

windows7-x64

1

=?UTF-8?B?...?=.pdf

windows10-2004-x64

1

=?Windows-...?=.png

windows7-x64

3

=?Windows-...?=.png

windows10-2004-x64

1

email-html-2.txt

windows7-x64

1

email-html-2.txt

windows10-2004-x64

1

email-plain-1.txt

windows7-x64

1

email-plain-1.txt

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07-03-2024 19:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    =?UTF-8?B?VG95b3RhIEJlbmVmaXQgRW5yb2xtZW50LnBkZg==?=.pdf

  • Size

    10KB

  • MD5

    bd3a12d52669f561ec7292f97145eed1

  • SHA1

    dd1161376edc8e5be6eec47752b23961ed245c14

  • SHA256

    03a0a317daf0b61200ba338a91bd7902e957fe198d5a285a23bfffa289be9b8e

  • SHA512

    7f0c9fbd425cbde63363562a152bafb576eadc901638f2314550467d7592b1d5a4b7bce6912e46c5976eb8f869874c054948e284cf1d1fb95852e6f2c647b3bb

  • SSDEEP

    96:Bv9Rq3+rEhoLVrZE8lPo8ZMC83JdQPoAR/Evh9vuURp6MuEkOBBWBBFB2vByeBB4:bBQAe8lw8GC8LQPoARsvhxRp6MuEoFDt

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\=_UTF-8_B_VG95b3RhIEJlbmVmaXQgRW5yb2xtZW50LnBkZg==_=.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1772

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a175d68d1068ab7861ebc624daccf414

    SHA1

    8d8786cdc855b3b513e02bb8664b7107d50fdadc

    SHA256

    8b895f52ea5b9ce47efaabf1efc304719491e2d7c74553e8205af29a819f5cf8

    SHA512

    a64ac543267be06c95738ae49ff258e1bd5a505c02b1763322a27a6e477a5e30f3c15b495cada0a7f0f72f402d373111989f6cea80337a9d8f13278450a8d011

    Download Submit