3286fe2589b8bfc82529e3835f1d7c6f3e9b5edee5a3047be36f6fb82d1159af | Triage

Analysis

max time kernel
99s
max time network
9s
platform
windows7_x64
resource
win7v20201028
submitted
08-04-2021 03:33

Sharing

Report Analysis Logs

General

Target

Outstandings-I024-2021.pdf
Size

47KB
MD5

3ed2e8746292d44e216d45ec5f23a219
SHA1

9b3b4afaf7e7ab89a2dc353ee211e1325d2e33c0
SHA256

3286fe2589b8bfc82529e3835f1d7c6f3e9b5edee5a3047be36f6fb82d1159af
SHA512

c0d3fe3c687290868acfd84c57ff805501b8735648e6017449a5925fb252994d9e6b96e41215ff661cc266f05337707c145fd63ba9637385ea5c62927b06b5f4

Score

1^/10

Malware Config

Signatures

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes:

AcroRd32.exe

pid process

1932 AcroRd32.exe
Suspicious use of SetWindowsHookEx 3 IoCs

Processes:

AcroRd32.exe

pid process

1932 AcroRd32.exe
1932 AcroRd32.exe
1932 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Outstandings-I024-2021.pdf"
1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:1932

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1932-2-0x00000000750C1000-0x00000000750C3000-memory.dmp

Filesize
8KB

Download