Overview

overview

3

Static

static

3

REFUND PAYMENT.pdf

windows7-x64

1

REFUND PAYMENT.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    23/05/2024, 09:42

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    REFUND PAYMENT.pdf

  • Size

    50KB

  • MD5

    b9be38a1ad5cbfa9a823dfd83865e170

  • SHA1

    fd326fdd6043ab8690cefa5c6012b23d9e8b857e

  • SHA256

    c7137d3d154fa6425921901f025ab33faca7ce08bf9118c05ff5fcb6c9bdb01a

  • SHA512

    a144cfefd4efc962428e3d0614467f19351af8923bdaf4bfaf2375b2c8194aef8dfac7a705271835dd39520103ca63ea81d3eb02d7b118d75660cc10763293a0

  • SSDEEP

    1536:0eeDwu6/rZqSEgKeNMxHGtnjOgeLRwX4jsY9o:0eeDwJ8SnKBYtnidQku

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\REFUND PAYMENT.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1284

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          f4f9ba317ef90bc6f05038e6a779efbc

          SHA1

          44ce2f0c1832e4c8f40cde22c72be0255e81f38c

          SHA256

          0e3fd69769c762164945f90d728cb13a4b1efcec3a3109c02b72c1ced68fa4fd

          SHA512

          edf0a06441024866a38ef72bc44fc961107adef5f1eea98e819fb0c95e5b5e286d1a45ca4a25f04d173e88abce33ae8784b87ff16380f7d6ae41ffd50db755cd

          Download Submit