5b3c50dc7b90f936ddc0afb7e909a2ebc39a74fca023710ade45375ed27e4ff3 | Triage

Analysis

max time kernel
119s
max time network
121s
platform
windows7_x64
resource
win7-en-20211014
submitted
05-11-2021 15:07

Sharing

Report Analysis Logs

General

Target

Current Status Report.pdf
Size

65KB
MD5

15d419bd96f66ee7a2045e5d01c7ff45
SHA1

448d0e7f57d5ca8e52f1e3a2c36cd909a6f18d9f
SHA256

5b3c50dc7b90f936ddc0afb7e909a2ebc39a74fca023710ade45375ed27e4ff3
SHA512

687251ffee9fd7b67a959a654c5a9f25777b0f74347c3ba71516adbf77aec9b21f16fe4bb8765edde6b3b5362a8c834508c64a90089fd9bbd6655a5b19bbbb61

Score

1^/10

Malware Config

Signatures

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes:

AcroRd32.exe

pid process

656 AcroRd32.exe
Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

656 AcroRd32.exe
656 AcroRd32.exe
656 AcroRd32.exe
656 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Current Status Report.pdf"
1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:656

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/656-55-0x00000000757E1000-0x00000000757E3000-memory.dmp

Filesize
8KB

Download