Overview

overview

3

Static

static

3

Datum-06-2...eo.pdf

windows7-x64

1

Datum-06-2...eo.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    08-06-2024 00:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Datum-06-2018-jlMUhNfteo.pdf

  • Size

    218KB

  • MD5

    a74d46170b0714768a4a990022858c96

  • SHA1

    13626160ee398ea9100d442807492c1096e6dd47

  • SHA256

    9ba9ad930c4c28cecbd77ecc6e8fe33a852f5df4fa5e163d1b73a308653130c7

  • SHA512

    5128f64084e40c7a1b9c20230ee222382ded0378748360ed95d576e2ef04d9b6f896381afdffa9283d1486aef59b2b72998f57e86a776180f1cb0ed72379da97

  • SSDEEP

    3072:sM2K3pPA6Bb1vwHx1OEt/m2AqaOzCFb+fzvCVraVxnboZ7jyR8uwYCNp+iRyM0yn:PxA8bsxT4qLcb+qraLoZHi8uw1p+ZM0q

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Datum-06-2018-jlMUhNfteo.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2032

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    dd193ffd6ce29cead8d435c85b881b47

    SHA1

    03e8dcbf3059ba853bd4c30d2db3d86995322627

    SHA256

    feba9f8fc4bdb06ad6a7a124b6f5f2f9b9d09fc7862fe20f1b66596b6df0740a

    SHA512

    487c4fe30cbb35a4b129f55edebfa65ea379f553aef494b63b9a8a8c61ba61b9bea6c5e83eff449b238293d4f9b40c4ddda907b3ef32055498eaed7ea18f2d06

    Download Submit