Overview

overview

10

Static

static

1

List of su...ts.lnk

windows7-x64

10

List of su...ts.lnk

windows10-2004-x64

10

List of su...ll.dll

windows7-x64

1

List of su...ll.dll

windows10-2004-x64

1

List of su...es.pdf

windows7-x64

1

List of su...es.pdf

windows10-2004-x64

1

List of su...40.dll

windows7-x64

3

List of su...40.dll

windows10-2004-x64

3

List of su...gr.dll

windows7-x64

1

List of su...gr.dll

windows10-2004-x64

3

List of su...rv.exe

windows7-x64

10

List of su...rv.exe

windows10-2004-x64

10

List of su...dt.dll

windows7-x64

1

List of su...dt.dll

windows10-2004-x64

1

List of su...40.dll

windows7-x64

List of su...40.dll

windows10-2004-x64

3

List of su...ce.dll

windows7-x64

1

List of su...ce.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14-03-2024 19:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    List of suspected clients/moorefiles.pdf

  • Size

    460KB

  • MD5

    57ac3e59f69c27ce269a55e5235ee663

  • SHA1

    dc747d32c947b085230e5b4abe72f7152ae404da

  • SHA256

    54dcece696a9ac3ac7775233f1419e9ad098acafa98a8808759412a6423c2d6c

  • SHA512

    0724dbbc27967e01cfeddeb423681b80023120a27c3cbb9367321d809b0e711bdf9b4358ca58413d06007fa80eb2df0bd0a5327fc6722ef5ecbda67c14194c3a

  • SSDEEP

    12288:ZibjASKfqVPDsHtf2tLk2/oxwFsw5xNdNu1ITgfusIszh7C3Wv78:epKfqZDsAi2CwFsH1Y1sIsgW8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\List of suspected clients\moorefiles.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2152

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8b3123ae2d0ddff51e52eb6de36ec219

    SHA1

    f743471e1caa08237db2263545dcfbba3c719c9e

    SHA256

    e2050f2a267c78bd047e9bebfc45dacf90c69e200f83ef0db7d9cf3f54c73612

    SHA512

    e2b2ff9a555a5c5a2a2022e75e056786043162e2b6da458ace515edc9d9c12c9390842fc3e5923f00209275a4f5019ed77f931a8a124a68ff2de7638f922973b

    Download Submit