Overview

overview

7

Static

static

3

(03) PDF R....2.exe

windows7-x64

7

(03) PDF R....2.exe

windows10-2004-x64

7

PDFR_Print...00.exe

windows7-x64

1

PDFR_Print...00.exe

windows10-2004-x64

1

PDF_reDirect.exe

windows7-x64

1

PDF_reDirect.exe

windows10-2004-x64

1

Stamps/APPROVED.pdf

windows7-x64

1

Stamps/APPROVED.pdf

windows10-2004-x64

1

Stamps/COMPLETED.pdf

windows7-x64

1

Stamps/COMPLETED.pdf

windows10-2004-x64

1

Stamps/CON...AL.pdf

windows7-x64

1

Stamps/CON...AL.pdf

windows10-2004-x64

1

Stamps/DRAFT BLUE.pdf

windows7-x64

1

Stamps/DRAFT BLUE.pdf

windows10-2004-x64

1

Stamps/DRAFT_ULH.pdf

windows7-x64

1

Stamps/DRAFT_ULH.pdf

windows10-2004-x64

1

Stamps/E-Mail.pdf

windows7-x64

1

Stamps/E-Mail.pdf

windows10-2004-x64

1

Stamps/EXP...rd.pdf

windows7-x64

1

Stamps/EXP...rd.pdf

windows10-2004-x64

1

Stamps/FINAL.pdf

windows7-x64

1

Stamps/FINAL.pdf

windows10-2004-x64

1

Stamps/FOR...NT.pdf

windows7-x64

1

Stamps/FOR...NT.pdf

windows10-2004-x64

1

Stamps/FOR...SE.pdf

windows7-x64

1

Stamps/FOR...SE.pdf

windows10-2004-x64

1

Stamps/INF...LY.pdf

windows7-x64

1

Stamps/INF...LY.pdf

windows10-2004-x64

1

Stamps/NOT...ED.pdf

windows7-x64

1

Stamps/NOT...ED.pdf

windows10-2004-x64

1

Stamps/NOT...SE.pdf

windows7-x64

1

Stamps/NOT...SE.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14/03/2024, 03:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Stamps/COMPLETED.pdf

  • Size

    6KB

  • MD5

    db98d0bfd15b91a4909e3c27e407702f

  • SHA1

    092b11fb71bb4d47d8e16c634d360f3315bf81ea

  • SHA256

    b6ab48f976660a15d5d13035cc8f7a73893151272d4f909fbad5f24355d6c088

  • SHA512

    1aac8e88f79c2db9575e287597c0e97be48282e1db55dee245b7c1f77bc29a76fc729da4519f6e3349d60f937a5a3e7e342f3669039f254aa5a140ae10902f0e

  • SSDEEP

    192:xJuuPp5YXEQquWHR8wy/dqR6uDHQlhnwib:xJuuPp5YXEQo7y/S62QlTb

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Stamps\COMPLETED.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2488

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    334390110992d9405c0682662b065ede

    SHA1

    824972b0b3c8aef48a8237994b150f88cfc578ad

    SHA256

    d1d6bb6bc7e62a2cee0e6cebfb0d4b664235362ac6625b761dd297f4e75fd65f

    SHA512

    0fa1ff9f6438f06cc58566cdf9939c042878169dc1606a5419463f942a33a4b41dd7eaa07f3559289f5b345b63b80e37987d612a888a0c3bfd5c26686297d743

    Download Submit