Overview

overview

3

Static

static

3

gcqfb.ugkh...ug.pdf

windows7_x64

1

gcqfb.ugkh...ug.pdf

windows10_x64

1

Analysis

  • max time kernel
    152s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-en-20211014
  • submitted
    29-10-2021 19:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    gcqfb.ugkh06 wq.iompamj06 k.zbanieks06 xz.sayqy06 ehui.wk06 qct.ytqjtz06 .eoamryf06 og.tuout06 zh.ug.pdf

  • Size

    110KB

  • MD5

    4751933ebdec3924ce07c6eec7e8f2b0

  • SHA1

    2b22c2dbf01529422d7b3f9eec69fc314237e9f8

  • SHA256

    53a1b6dec6001122214ab24b034be692e76012dbea1a52a27b114aa9aae95cb6

  • SHA512

    2de3bf5283d111a1a1af2ac85e1244dbae0e7cfb3d54480c601e7e70cff4bb05a6ba3d55f5dca9408c990c1a71c7eb27028df718f1d7f9f11d131ead953cc1ca

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\gcqfb.ugkh06 wq.iompamj06 k.zbanieks06 xz.sayqy06 ehui.wk06 qct.ytqjtz06 .eoamryf06 og.tuout06 zh.ug.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:784

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/784-55-0x0000000075BA1000-0x0000000075BA3000-memory.dmp
    Filesize

    8KB

    Download