Overview

overview

1

Static

static

1

learninghu...cz.pdf

windows7-x64

1

learninghu...cz.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    144s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11/03/2024, 22:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    learninghub-certificate-g5x-gpjcz.pdf

  • Size

    174KB

  • MD5

    28b0c6e9cebe8c58535d8d3669fd62fb

  • SHA1

    be4cc3d4853b607850e7819210e1077214da6ab4

  • SHA256

    eab2c331f35f4e62b36ac09b59001e32a17963c65572a8ea27f804f8b7136a3a

  • SHA512

    14c4b883b501dd666cb044af1b25688ca757af78127e5f2c567ddf7704ff6347b37aadd7cbc60013ec2f5a4e9c9297ee5ee2ebace377f42388191d4491a24d5a

  • SSDEEP

    3072:gh9AU9sMz2oShGfzBV7tB/DoaubZaVTpU2m7tB/DoaudETF7M:m9Ae2tkfzz7foaIZSV07foais4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\learninghub-certificate-g5x-gpjcz.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2120

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0297256d673f5a3a4dcd5f6847f4ceb6

    SHA1

    a4d13a3998463afc2b72cfb77746270dbc727d20

    SHA256

    16c9d442fa7de437c857e825b6609890043c996bc17a12a6b1a45cc581b3ecba

    SHA512

    a2ff759926c4e6ed8441998019c2ed6209e071300c0b66638d5457cd64a3731d23ca2987c254df67576f3315f48648087b2f78d45f90f839984d3b0588629e7f

    Download Submit