Overview

overview

8

Static

static

3

CS_119_Hom...24.pdf

windows7-x64

1

CS_119_Hom...24.pdf

windows10-2004-x64

8

Analysis

  • max time kernel
    119s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21-04-2024 22:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    CS_119_Homework4_2024.pdf

  • Size

    255KB

  • MD5

    dfdf2c8c3b86047fe5a4e3ff3fa39a9a

  • SHA1

    3de23aa5213721453191bf978fa73ae20a771edb

  • SHA256

    4d5a730bad1d3d736da65917d6440a4e35b157f6c6b5deb3f08a7f0f7ede8cce

  • SHA512

    3b046364ad2856fbbeeacc74967172a887186307781e6703b01d28c3dddb833b43e001b3dcfbb795e2b4a7905e7d15939fd61dca317c5437abc136aeb32a4d6d

  • SSDEEP

    6144:VKBdfuEzkQ9YqFec+UE5DBV/Gkp7fjmJYn:sZ+qFet97//S+n

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\CS_119_Homework4_2024.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1808

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4a5526006a0816587974441ca01dcb8d

    SHA1

    779a91db4b109c877c5e62dddd038366275a0bc0

    SHA256

    040d8b0a89ca30b39314e975fa5edb304102fc4c310ac7af7d16dd2c30855085

    SHA512

    c50f0fd9f962d68dfafc95620037c0022945a6f54c71b8232f1616c38e69d45a89d3f37fe8f8ca7b1713d29dac7770a7d0f7f7157fa9ba9fa55cfd4fda5ffad7

    Download Submit