Analysis

  • max time kernel
    117s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    17-05-2024 19:28

General

  • Target

    URC%20Announces%20Completion%20of%20New%20Financing.pdf

  • Size

    8KB

  • MD5

    948573cb68bbd40fcd2e8f6f884d06d5

  • SHA1

    e4defbca7d2c9ace65b512bb10134a32a4f7ac48

  • SHA256

    75ebd29be18c1d2b8fd7703e617d6783655c642b46abae0303101fc6958555bd

  • SHA512

    30feddb4556855c982fe400837daa501eaf6f3ac425593a060f404363622c5be61a84cbad9b4fe048a6573180a68ecff8fbbe218413e06ed7c41b8cb68ea8a04

  • SSDEEP

    192:1zleyKoNetKDYrGRlY1PqhsMkQxgzZubF:B0yKoNcrGRleShIQxeiF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\URC%20Announces%20Completion%20of%20New%20Financing.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2168

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ade795f956443b38628c1cc1502f20d6

    SHA1

    d72566f208c766c5ab3e477a41b93e18d8e54834

    SHA256

    84e268bc611e2263b9f2caef51824078ece4d331e6d8a9c3ea7180f20a14d7ba

    SHA512

    c12dabe0d3540a77fc4bc7ca40ea77f56cf356402d6921b9ddb58daaabad3a28e28b44dc836c054727fa5e4bcce82e02fe4396e4a739ee9ba16c358908dc2386