wopijerawedurivoredumumo.pdf

General
Target

wopijerawedurivoredumumo.pdf

Filesize

82KB

Completed

15-11-2021 08:01

Score
1/10
MD5

5d80f59db6a49ce16ed40c61ed444832

SHA1

df5a2bf2352f90b22f777b5c9127a5da176a5a57

SHA256

3fa9779b720dde465cb07723ea8b22a450ea35f3a76c23c1b1498b3c5ff281e0

Malware Config
Signatures 2

Filter: none

  • Suspicious behavior: GetForegroundWindowSpam
    AcroRd32.exe

    Reported IOCs

    pidprocess
    1192AcroRd32.exe
  • Suspicious use of SetWindowsHookEx
    AcroRd32.exe

    Reported IOCs

    pidprocess
    1192AcroRd32.exe
    1192AcroRd32.exe
    1192AcroRd32.exe
    1192AcroRd32.exe
Processes 1
  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\wopijerawedurivoredumumo.pdf"
    Suspicious behavior: GetForegroundWindowSpam
    Suspicious use of SetWindowsHookEx
    PID:1192
Network
MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Replay Monitor
                          00:00 00:00
                          Downloads
                          • memory/1192-55-0x0000000075801000-0x0000000075803000-memory.dmp