Overview

overview

10

Static

static

7

1f160df75b...cs.exe

windows7-x64

7

1f160df75b...cs.exe

windows10-2004-x64

10

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

BTAPI.dll

windows7-x64

1

BTAPI.dll

windows10-2004-x64

1

Epileptolo...ls.pdf

windows7-x64

1

Epileptolo...ls.pdf

windows10-2004-x64

1

Limean80/M...th.dll

windows7-x64

1

Limean80/M...th.dll

windows10-2004-x64

1

Opdyrkende...LL.dll

windows7-x64

1

Opdyrkende...LL.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    09-05-2024 23:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Epileptology103/Bullpout/Stillelsningsprvers125/Signatures Technical Details.pdf

  • Size

    21KB

  • MD5

    d0be41edd7564340d9aa2434269f2609

  • SHA1

    3fe9689346c71cbe9ecb6da52a51e641857613ff

  • SHA256

    37e4a7883be617ad2400e67a773ba10c9cb6545d96dd154ff33cfb84f7f6af38

  • SHA512

    3fff27c8407af09ee22d0cfa801a05cc6ac361fb7ccccb40578db89b4994529218cd1adf93bf79abf68a00a7f5792c7e720d1a1f12335c7fb135ee174fec9c8c

  • SSDEEP

    384:d1X/fQ3n90oj7Xsp986OzNautr6MHkjSIu+w0X6FgRLjYWiv8ku:dV/fQ390ojTspHOBasBkjHu+w0qiJYsf

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Epileptology103\Bullpout\Stillelsningsprvers125\Signatures Technical Details.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:912

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    13866a6670674edd513a42ee07826885

    SHA1

    d4d54db5921d6b8063766188097634202595b39a

    SHA256

    a49833c6dc544e13f2ad9cff527af9bcf23847489141536bde746647545a3de7

    SHA512

    12d98f6ec3bbd3120a852cf202d35074241a950ef354d84aae49a8f8982606a6035620c238d540fd4a946bc2b5c0c54ee8c59e7190c55d3b1c03a688dc7145c1

    Download Submit