Overview

overview

3

Static

static

3

=?UTF-8?Q?...?=.pdf

windows7_x64

1

=?UTF-8?Q?...?=.pdf

windows10_x64

1

Analysis

  • max time kernel
    152s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-en-20211014
  • submitted
    03-11-2021 11:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    =?UTF-8?Q?Sind=20Sie=20wirklich=20auf=20der=20Jagd=20nach=20der=20wahren=20Liebe?=0D=20Ich=20bin=20b.pdf?=.pdf

  • Size

    184KB

  • MD5

    0e04cdda80f61713641e86c5b4aa153d

  • SHA1

    925a336c98ac21cf038593a13a3a7157466aff5c

  • SHA256

    a6d6dc9517e734d3958346a89935f92850da0069289daa1e8dd08ba80ee8b6c2

  • SHA512

    6cc94a0ffb9094afaf4a8b7889017e7e262d69685fb8146977e0e46e306f59a66602aef2ec5dce6b25b8b63888d407d8247c6da52252b4a7d10bf8c02f8e9b2d

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\=_UTF-8_Q_Sind=20Sie=20wirklich=20auf=20der=20Jagd=20nach=20der=20wahren=20Liebe_=0D=20Ich=20bin=20b.pdf_=.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:676

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/676-55-0x0000000075321000-0x0000000075323000-memory.dmp
    Filesize

    8KB

    Download