f8ce50d546e684711be622ced0a0d46777b34184b43a33b7099d54921087fc8a | Triage

Analysis

max time kernel
150s
max time network
128s
platform
windows7_x64
resource
win7-en-20210920
submitted
18-10-2021 21:25

Sharing

Report Analysis Logs

General

Target

NEW_DESIGN_2021105191.pdf
Size

179KB
MD5

9251c08d099a89560b2674628772db31
SHA1

0305847ab40ac378d33ca20cf9dcbeb31df0e612
SHA256

f8ce50d546e684711be622ced0a0d46777b34184b43a33b7099d54921087fc8a
SHA512

4b5f0dc9a1f8e768abd7c0d9adbaee51072cb40b8cc0ef2fdf5a4aa0264bc35b386272c463280a488c3865396943b09ef899b73c9f05aaadcec48d46e0d9822e

Score

1^/10

Malware Config

Signatures

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes:

AcroRd32.exe

pid process

1544 AcroRd32.exe
Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

1544 AcroRd32.exe
1544 AcroRd32.exe
1544 AcroRd32.exe
1544 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEW_DESIGN_2021105191.pdf"
1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:1544

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1544-53-0x00000000751D1000-0x00000000751D3000-memory.dmp

Filesize
8KB

Download