Overview

overview

3

Static

static

3

METR June-24.pdf

windows7-x64

1

METR June-24.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    01-07-2024 17:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    METR June-24.pdf

  • Size

    190KB

  • MD5

    d4b211ae201833ef315d390086f6b74e

  • SHA1

    21a59db3b0887dcbf5c58ccccb07979fcf499d81

  • SHA256

    a2743aa62bae0abac702ee95cedcb9228dd3b86dd88cc92822ef4d9b69ba921e

  • SHA512

    65a0a5d61e984b103d6601064efebe73ab398f49cddeb472c4ebf4390d66f135b4477e165e9ed956b0952a74d90eebb0a4346e4ec3926afa07cdc9d0a94b253f

  • SSDEEP

    3072:cYqdm3mWBlplCNV+uZlgLcFabauCVPvGX85v3k/0sCHpqk4m7L1PI:cH6/lCNHqIcsPpvs0CmPe

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\METR June-24.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:836

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    53dae2f3fe8dc33939695fc77e7a0629

    SHA1

    51d198c87f0783f366ae2281fc54cdd3d0e8ac0a

    SHA256

    fb81080ef0732fe0c68105033576c98b3d9a27b4cb2093c8b98f19e8d23885f2

    SHA512

    e4ce5fe2273d90016232e5249ec74787db8f926c9f68d134af9008e6fe999bbb27d13fa76110bd04dd12b19225a605c73755c1b7070fd35068e9f25c9a2ffb0d

    Download Submit