9f21f07e4a021ea311fa62bfd0f98d3255c15f932b00e97148e242f9dbc4d558 | Triage

Analysis

max time kernel
151s
max time network
126s
platform
windows7_x64
resource
win7-en-20211104
submitted
07-11-2021 19:11

Sharing

Report Analysis Logs

General

Target

74168570296408822042338513301o 880182430365948319628583269o 3647690129911322415o 7302296077287094162.pdf
Size

128KB
MD5

761a4ae998e7ca7d17c26c5f818f7990
SHA1

9f82dc3fb0ab57133faac97d1ac264bf178127db
SHA256

9f21f07e4a021ea311fa62bfd0f98d3255c15f932b00e97148e242f9dbc4d558
SHA512

f6a35ab34cd5d00b998e6717a2ecd2a776197b2e333f3c56141a19ab0526a454bed706cf439c365e1be45f8b94bb640b6f205e075899d92f23d12b18bb6c764c

Score

1^/10

Malware Config

Signatures

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes:

AcroRd32.exe

pid process

764 AcroRd32.exe
Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

764 AcroRd32.exe
764 AcroRd32.exe
764 AcroRd32.exe
764 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\74168570296408822042338513301o 880182430365948319628583269o 3647690129911322415o 7302296077287094162.pdf"
1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:764

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/764-55-0x0000000075BB1000-0x0000000075BB3000-memory.dmp

Filesize
8KB

Download