Overview

overview

3

Static

static

3

cqnbo.05 f...oa.pdf

windows7_x64

1

cqnbo.05 f...oa.pdf

windows10_x64

1

Analysis

  • max time kernel
    157s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-en-20210920
  • submitted
    29-10-2021 19:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cqnbo.05 fxjl.qfqmy05 za.bx05 lyxcpjn.05 nxuqcvin.05 pxii.mms05 gezbrks05 .euzh.yxb05 wx.eimjv05 uicoa.elzz05 woa.pdf

  • Size

    122KB

  • MD5

    08b459ce08c3322f41c15608fa303513

  • SHA1

    81d6af448746b7de70de351912bd97e9b3f43408

  • SHA256

    960a5422d16d830e1e9dd756e8604b0dacdd2d39f0178a5ea7aa0d58fd530ccc

  • SHA512

    dc3670c6f361f0f7c6919d825cac4b5063d386f4b7bdfa54b23524cc63f6d260c5203929144c25b18cafe04235aa7318ba7572f5339e1206ae0ce555d22a7eb8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\cqnbo.05 fxjl.qfqmy05 za.bx05 lyxcpjn.05 nxuqcvin.05 pxii.mms05 gezbrks05 .euzh.yxb05 wx.eimjv05 uicoa.elzz05 woa.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:808

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/808-54-0x0000000076B61000-0x0000000076B63000-memory.dmp
    Filesize

    8KB

    Download