Analysis
-
max time kernel
151s -
max time network
120s -
platform
windows7_x64 -
resource
win7-en-20211014 -
submitted
15-11-2021 19:08
Behavioral task
behavioral1
Sample
946af84cb2b39cbb866132c23d3c9af6797d6a062f14f598218aaa65d523d202.pdf
Resource
win7-en-20211014
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
946af84cb2b39cbb866132c23d3c9af6797d6a062f14f598218aaa65d523d202.pdf
Resource
win10-en-20211014
windows10_x64
0 signatures
0 seconds
General
-
Target
946af84cb2b39cbb866132c23d3c9af6797d6a062f14f598218aaa65d523d202.pdf
-
Size
74KB
-
MD5
aed9c5874d30d82683e02dc857405b58
-
SHA1
36a14e8dec794b897eea6fbc5de0d374a473dbce
-
SHA256
946af84cb2b39cbb866132c23d3c9af6797d6a062f14f598218aaa65d523d202
-
SHA512
2242f26f0d2e8b127f31bbce0e5c21375825fa7a964938a385c6876140166ada4533ded673a8231e369f89c1884f5355a03220c9c24e6f0f673abd51a5a3e46b
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 672 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 4 IoCs
Processes:
AcroRd32.exepid process 672 AcroRd32.exe 672 AcroRd32.exe 672 AcroRd32.exe 672 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\946af84cb2b39cbb866132c23d3c9af6797d6a062f14f598218aaa65d523d202.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/672-55-0x0000000076081000-0x0000000076083000-memory.dmpFilesize
8KB