Overview

overview

1

Static

static

1

OSSTMM_v3_...ol.pdf

windows7-x64

1

OSSTMM_v3_...ol.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    23/07/2024, 00:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    OSSTMM_v3_traducido_al_Español.pdf

  • Size

    8.3MB

  • MD5

    3728c0dd5e4c54e33f913a6c76a47ac5

  • SHA1

    a4dde88c6223bf17af0b12c335fc67a115288473

  • SHA256

    996b7d4fb82581521a04c064326fafeb0ef498c87324c4045287b40ea90931b3

  • SHA512

    cc5f2a5ef92a9fb43b24246f87d88df89f4324e99b0dbc22a2a86f113226032fdc0a8ea1a5158ad9b0f79f0c5f2390dcb553c6f0b910b995d1bcc344c6735b7b

  • SSDEEP

    49152:/HCSUsySbQwUZ3hHoDMwCdwzYQBKQvl/CZ18y6vN7uhcRMIrrvP8:qnsNyZ9RwcQMO1Y1N6vNccRM6rvP8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\OSSTMM_v3_traducido_al_Español.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2128

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f81629737e8892590dcb73d4ee321208

    SHA1

    30d7270ea8051161ce413a5b8b74af6d82512676

    SHA256

    2d7131d693cd2a734d377007949e6256ec7c0213e42e74cc325a37c7dc54a1a6

    SHA512

    465f63e07e8726ec28c3f87c02000540f1d4c92c00458ec974f89771f9cbacf639ad7ef805c3c9c1d9467020cb3341edb52ecd4654403b04213af3ef7187396a

    Download Submit