Analysis
-
max time kernel
154s -
max time network
127s -
platform
windows7_x64 -
resource
win7-en-20210920 -
submitted
29-10-2021 19:15
General
-
Target
cnvwfqb737 vhve.l737 iiql737 pr.kolykh737 nif.jtp737 gyjo.hf737 bkqtfah.z737 yribg737 .fwdb737 fiywy.pdf
-
Size
197KB
-
MD5
e3a9a6d70a283b122f5031703fbe5fe7
-
SHA1
5524f6dce25ba2446ffa6148e65dcb4a4c203813
-
SHA256
58c4108d93620f50fd9c94ff582e73b19ee31187b54b51b6b8b176f5e2666351
-
SHA512
85defb297595e7400f7cfdc7f0b42e691fef980d1ddff50dd859ecf470ba858a5dd4563692b5a9cceeb1a3c705b0e6856c5dadcf9c0b5761ef6b2105ec42fbe8
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\cnvwfqb737 vhve.l737 iiql737 pr.kolykh737 nif.jtp737 gyjo.hf737 bkqtfah.z737 yribg737 .fwdb737 fiywy.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1240-54-0x0000000076A81000-0x0000000076A83000-memory.dmpFilesize
8KB