Overview

overview

3

Static

static

3

Steuer-06-...bU.pdf

windows7-x64

1

Steuer-06-...bU.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    11/06/2024, 05:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Steuer-06-2016-sXZDO9dxbU.pdf

  • Size

    218KB

  • MD5

    47c8d89f9879bfb8683fcf47f24fcb5f

  • SHA1

    3b9fa98fdeff0e35e543a3abbd194e0132dbaa8a

  • SHA256

    f6ea58080cb124befa22f409abff226074841422d6514c41356fdaa6c3204a46

  • SHA512

    d3345a9f227f653623819ea15bfa2c1ffd35e9fd7f3f7fe4e7ac1d2d28c1b984fd7544d1ee62351743d3cc440862fa099776bfdfe4e6436f616346eeccbc8a3f

  • SSDEEP

    3072:sM2K3pPA6Bb1vwHx1OEt/m2AqaOzCFb+fzvCVraVxnboZ7jyR8uwYCNp+iRyM0ys:PxA8bsxT4qLcb+qraLoZHi8uw1p+ZM0d

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Steuer-06-2016-sXZDO9dxbU.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2972

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1fccc5089dca54560af71a1de69a61b5

    SHA1

    ee50d6307a4ebbc9804e58eca90a4655555fa467

    SHA256

    248bfbef6ba160f7cb005458dbf09fe2de08d0bc49c726f6df82afb775e3110d

    SHA512

    fa8ceaee1633f5e9e25e870ca8673b298399f438f384848db16bac00ee96dbb022feaecf933b0e3d7905de2f0a4c7e43227d9c2c94f760f5d93ac438e0cfa062

    Download Submit