6cce6ce9359732cd7cfe944b23758dd5d95b5d27373d66f387da9ddab4f50642 | Triage

Analysis

max time kernel
150s
max time network
119s
platform
windows7_x64
resource
win7-en-20211014
submitted
15-11-2021 07:36

Sharing

Report Analysis Logs

General

Target

43274872974.pdf
Size

73KB
MD5

9487e9816477653d55451fb9c08fe1ff
SHA1

2a28faa1946b1c87ba7ecaa2813a53e8fbc0583f
SHA256

6cce6ce9359732cd7cfe944b23758dd5d95b5d27373d66f387da9ddab4f50642
SHA512

c0cbf7b26dcf53b6888040848ebb952e980927e61aa38f405d44eb6766b03965d9069f0e9c7adf5abdcc89022d35526c41d9a4bac0d9e94ba533bed5d49550e7

Score

1^/10

Malware Config

Signatures

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes:

AcroRd32.exe

pid process

944 AcroRd32.exe
Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

944 AcroRd32.exe
944 AcroRd32.exe
944 AcroRd32.exe
944 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\43274872974.pdf"
1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:944

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/944-55-0x00000000758C1000-0x00000000758C3000-memory.dmp

Filesize
8KB

Download