Overview

overview

3

Static

static

3

gsxfcson7 ...xh.pdf

windows7_x64

1

gsxfcson7 ...xh.pdf

windows10_x64

1

Analysis

  • max time kernel
    157s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-en-20211014
  • submitted
    29-10-2021 19:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    gsxfcson7 .hid7 ftj.fyzdod7 o.sgwaove.7 whuhi.7 qjddrzfdc7 .ixh.pdf

  • Size

    109KB

  • MD5

    267f22b9c0cddba044281bfb740d32bc

  • SHA1

    7ef8d7980970597feabef30e9db497df7870fb12

  • SHA256

    1714554c4b6eb6fcc18d444b7b8afefd2aff530a249e5fdd5e1df1dd69c97f55

  • SHA512

    60437b1ef5eb68fad855b1426b024e1b28c46c281350bd7fe848d2d3286f06a8ab31435f66cf384ade46c4877dc1b18c1a5fc22171ab7de80bceb4765d5fbeb7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\gsxfcson7 .hid7 ftj.fyzdod7 o.sgwaove.7 whuhi.7 qjddrzfdc7 .ixh.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1768

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1768-55-0x0000000075AC1000-0x0000000075AC3000-memory.dmp
    Filesize

    8KB

    Download