Overview

overview

10

Static

static

3

Ob-imusche...DF.exe

windows7-x64

10

Ob-imusche...DF.exe

windows10-2004-x64

10

$TEMP/Ob-i...96.pdf

windows7-x64

1

$TEMP/Ob-i...96.pdf

windows10-2004-x64

1

$TEMP/putinpenis.exe

windows7-x64

10

$TEMP/putinpenis.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    07-06-2024 16:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $TEMP/Ob-imuschestve-03-4096.pdf

  • Size

    101KB

  • MD5

    3d2b307dd04a2cf0a4b49e2fee1db17a

  • SHA1

    8063e0902d60b37ae37d580a1027360466794ef0

  • SHA256

    01dd6941f22aa1cc7125eadc6179f920cb1661674a52369f0bb4c2fac2884054

  • SHA512

    f95756a2b7979251afb0f49aa7bc9b6a6200430082f4d916da2c515ad9134459404ea3c69a7adcd12051928e9e0bdb13e88b60c5aecdde51b9ec35f7c858f6c9

  • SSDEEP

    1536:rV4AcFpyt2/hT7PL7WkPTo9ZlfKDPTqDtzaU9Xu3cmncIbFFMwF9ul:54AKytaT7uD/uPTGtz3Xu3cmcYze

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\$TEMP\Ob-imuschestve-03-4096.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2116

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8b8d1155f98705b7c4c871161f704c0f

    SHA1

    74c2e82dd0247aed41461a8ebb39534a0ea3d060

    SHA256

    deafb5a51855e2c7fa7d25da73304faacb3dbfce9b7000aed6e30f0969fea22a

    SHA512

    bd96c7c764d7e073ff618a53a156035c5e19b17d45c2c946b98d1fa2febed3873f5fea522e61e569df36b883a04be73949a6534c42d54cc4603e74efb8967e80

    Download Submit