Analysis
-
max time kernel
151s -
max time network
101s -
platform
windows7_x64 -
resource
win7-en-20210920 -
submitted
01-11-2021 19:20
General
-
Target
open and click 7581715*997p 6789690*91p 01905759*p 9318p 284*9502p 681428*p 27891660p 53*20p 98*9p 6.pdf
-
Size
220KB
-
MD5
bb0098ca08aa5042e8ec41296eea62f2
-
SHA1
8e28c85229fff7f66d255d710c124a2bf9967011
-
SHA256
b1a97cc262ce9a2e7523bb82dd3922ef7dca9ca831fa2245831eea3c925040f0
-
SHA512
821aa1214e03f790a7d67ea9d3d9c249cb8aac9afa42fe928fcad8d5f0e536ec7e1a40987a453e23d375382dfe1691c3ef9dad97e4778f73751e1733a9d3ab14
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\open and click 7581715_997p 6789690_91p 01905759_p 9318p 284_9502p 681428_p 27891660p 53_20p 98_9p 6.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1528-54-0x00000000765A1000-0x00000000765A3000-memory.dmpFilesize
8KB