Overview

overview

6

Static

static

6

# personal loan.pdf

windows7-x64

1

# personal loan.pdf

windows10-2004-x64

1

Resubmissions

21-05-2024 15:07

240521-shbgesaa8w 6

21-05-2024 15:04

240521-sfj1sahh48 6

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    21-05-2024 15:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    # personal loan.pdf

  • Size

    83KB

  • MD5

    dccac01ec23f57cedd298e586bea8082

  • SHA1

    13382aba7f9fbc2ae5f80d7e02ffa954af003c83

  • SHA256

    6747896b68dfc7d88e687c14969df38294f141e91dd21254dbe0669c256ebd97

  • SHA512

    e9300ae85014fb0643d78b31a6dfcbc72e8354216a6413881cf2e983b129632a1cacdba26bb26c7dfdbd1613c8d08c0abf765395ff64a04857d6710c25a9ba52

  • SSDEEP

    1536:0tb5whuIEgOZoJrwUactLlzthM4YuZmONmflpNDGx6R7azTzsqPKelBLDx7RyaEo:0tb5+4gMoJrwcJndYuofl760R7/qPJTt

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\# personal loan.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1936

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4fdd441187980c7f2f128a19d4f54c41

    SHA1

    e11bbfc364d1f3d86580e5760a6bb18f6890557b

    SHA256

    2b5c8a89963c161802c33c8dc54a9b6f9e64abbb5661da53e99efa709313a0d8

    SHA512

    6113b4c678f0debbaec55249213844771c4313a8ead8739e6bdbaa2bc87d3e273d46b1179c186b6bf81c81faa6d617cfbf8fda2e110723b52a0ca48fed4cb5dd

    Download Submit