Overview

overview

1

Static

static

1

DocuSign_C...-5.pdf

windows7-x64

1

DocuSign_C...-5.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    100s
  • max time network
    18s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/03/2024, 06:00

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    DocuSign_Contract_Agreement_20240321-5.pdf

  • Size

    40KB

  • MD5

    b2e85ae83c7ab2f8824a7cbba2cdc724

  • SHA1

    5d69fd66f06f2d66e4d6781b2cda39be26961578

  • SHA256

    4e34c392d071b0e1bfe725e2db534419faf72291895e02934be360b493996e74

  • SHA512

    bd6f7244836da2fad841b64bdc14834097a7f0d3bcbbfd9e777f124119614de9fa75478e68d555a8e805ee3f49fbb00a51b0bbc5030c1f91dbb5639ff420bbbe

  • SSDEEP

    768:2qFQVn1aUZY+tTP7zj+KjnMs5dqvXk5tbFCtALd+:tgwU/TP7nN+05CtALd+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\DocuSign_Contract_Agreement_20240321-5.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1680

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          160a6d3b701a13e1d18a6440a817df52

          SHA1

          3880e9dc0c4bd1a57faa57011cb58cac9841b329

          SHA256

          4efb98216d5016ba04478fc75da8ab472c3fb5fe5f8945849ab4751296e5e4d4

          SHA512

          ef6375d621b9875ebc2152fc71990943ac3579094cbf1955cb9888f82ead289ce8ae7d884a58dfaaefef35b76dd3d425123c0b892a6d3f154646d729dba6684d

          Download Submit