Overview

overview

3

Static

static

3

open and c...95.pdf

windows7_x64

1

open and c...95.pdf

windows10_x64

1

Analysis

  • max time kernel
    151s
  • max time network
    155s
  • platform
    windows7_x64
  • resource
    win7-en-20210920
  • submitted
    01-11-2021 19:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    open and click 520618778p 4*023622p 2*883457p 1*74p 867*949p 6537175p *098p 39529p *3966054p 99*0695.pdf

  • Size

    130KB

  • MD5

    d9b82d2b5cfa3657f52aa16b63e1d03c

  • SHA1

    ce13557835cd7a20f53b40d15441ae2d56a9ad0d

  • SHA256

    238253571419af27c02c656e66e91ffd96351221e521f5c2e9fb8322bc1a97ba

  • SHA512

    cd5af35cde7453f760ff8bd412d734209ddb6072a4533d595eb8c190f5c65d2415dbb8811e9faa7fbe4fcf9412f015c6928c83256d48816947b2e4aef6b54b22

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\open and click 520618778p 4_023622p 2_883457p 1_74p 867_949p 6537175p _098p 39529p _3966054p 99_0695.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:524

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/524-54-0x00000000768C1000-0x00000000768C3000-memory.dmp
    Filesize

    8KB

    Download