Overview

overview

3

Static

static

3

0s89bCePcg...RP.pdf

windows7_x64

1

0s89bCePcg...RP.pdf

windows10_x64

1

Analysis

  • max time kernel
    154s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-en-20211014
  • submitted
    01-11-2021 19:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0s89bCePcg 4Qbi8 wgNiMGR z6Zya i8Jnhn ACCf RP.pdf

  • Size

    97KB

  • MD5

    556cae319d9eaa75ced8feed569ad786

  • SHA1

    1f35ac524903d94897145fcf24e62d848ca503cc

  • SHA256

    2f23cf729d337e2711cf0319cfaf35250cdc5c33962780833f185e7101bee5e5

  • SHA512

    068ed47225a3b175fda38d9e332eb13984cc1e03656d7f8e0592fa719ca89381e0c810dea0ccaaa54c280c8c32da923f4f252132cdf19ccadfe60f8d554f8255

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0s89bCePcg 4Qbi8 wgNiMGR z6Zya i8Jnhn ACCf RP.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1664

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1664-55-0x00000000762D1000-0x00000000762D3000-memory.dmp
    Filesize

    8KB

    Download