Analysis
-
max time kernel
149s -
max time network
40s -
platform
windows7_x64 -
resource
win7-en-20210920 -
submitted
18-10-2021 20:29
Behavioral task
behavioral1
Sample
NEW_ARRIVALS_(AND-LIVING_COMPANY)_2021104881.pdf
Resource
win7-en-20210920
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
NEW_ARRIVALS_(AND-LIVING_COMPANY)_2021104881.pdf
Resource
win10-en-20211014
windows10_x64
0 signatures
0 seconds
General
-
Target
NEW_ARRIVALS_(AND-LIVING_COMPANY)_2021104881.pdf
-
Size
254KB
-
MD5
11c1e989d3c669e9d74aee8c173cb947
-
SHA1
40127305b2989e2c88f616cf9ffd667c367fe413
-
SHA256
868b63d4bcb38c61f5b90938decc46f64ceecba3b51f2bf1e7beb630f1f3d787
-
SHA512
63395ad7cb90436d090d31d35d60aa4e7f15affa17891389edb805d56636031f70cba37d3d6830d97b2d6cc33fdec0af806c7a830c701873db37711414662724
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 1340 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 4 IoCs
Processes:
AcroRd32.exepid process 1340 AcroRd32.exe 1340 AcroRd32.exe 1340 AcroRd32.exe 1340 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEW_ARRIVALS_(AND-LIVING_COMPANY)_2021104881.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:1340