ModuloConfermaIndirizzo_2016_56.zip
General
Target
Filesize
Completed
ModuloConfermaIndirizzo_2016_56.pdf
89KB
16-11-2021 12:06
Score
1/10
MD5
SHA1
SHA256
3e4e9232f4a973055eef13a2692ffc54
94cc703064b56a0416d884be1bf6a2edb66521c1
445f1576ff067209bd366064032e5826ef4b3b0e6b299184443053be75e49289
Malware Config
Signatures 2
Filter: none
-
Suspicious behavior: GetForegroundWindowSpamAcroRd32.exe
Reported IOCs
pid process 556 AcroRd32.exe -
Suspicious use of SetWindowsHookExAcroRd32.exe
Reported IOCs
pid process 556 AcroRd32.exe 556 AcroRd32.exe 556 AcroRd32.exe 556 AcroRd32.exe
Processes 1
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ModuloConfermaIndirizzo_2016_56.pdf"Suspicious behavior: GetForegroundWindowSpamSuspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Replay Monitor
00:00
00:00
Downloads
-
memory/556-55-0x00000000754A1000-0x00000000754A3000-memory.dmp
Title
Loading data