Overview

overview

3

Static

static

3

Non_Standa...CH.pdf

windows7-x64

1

Non_Standa...CH.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    25/06/2024, 10:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Non_Standard_Publication_Global_250624_de-CH.pdf

  • Size

    994KB

  • MD5

    8618da423b7044432339bebe91cb7cf8

  • SHA1

    ac76393d4836a2e95242b70fa6f47202d70c1d66

  • SHA256

    c913d4a599bfbf3e6f9fd242489d3e3fbaac46eb1dfedcfe11aa4193b7c4db03

  • SHA512

    bb0e2b95e55001c1f6b3af7f772d48800bf27bec1fcd4212f319fca548fdce9e5240173468fc8aaa9964ab7052cb1dc86657536c39d79daaded339445c6fc0d8

  • SSDEEP

    24576:KvlTONq/evBvXbm+oWKeAUCnbOfor1szz9GQcP:KvlTOs/eZiW2UOOOez9GQq

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Non_Standard_Publication_Global_250624_de-CH.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2872

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    dc5e2dc126c5786fa90f213519d0e659

    SHA1

    b9334ac9ad7b7f8248c453dbec165f26ccee9a65

    SHA256

    c656ec834d4bc9d2690e7a1148b4bbeddf0d00aaf2b4b4929188fb0a4a6d889a

    SHA512

    2ffca96d29c2616f00c34b2580c843a06064e7ddb76c02a3f959a1604861d428f3cbadb5c70033480dfc88b2c17b73c82101c25bbb9620e552a32cb9676510bd

    Download Submit