Overview

overview

3

Static

static

3

DFL_DroneI...EN.pdf

windows7_x64

1

DFL_DroneI...EN.pdf

windows10_x64

1

Analysis

  • max time kernel
    150s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-en-20211208
  • submitted
    29-12-2021 10:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    DFL_DroneIncident_Final_EN.pdf

  • Size

    6.7MB

  • MD5

    5338e5f2e29e3401f9bf729d0f57d3c6

  • SHA1

    3827e682a80fdfdccfdcf5964ca743ca12620079

  • SHA256

    2008c83521f662ccb932cef3ccc66de34ac4c5f657e868d6d855c09b851a3c4b

  • SHA512

    f6d404d916003d3662504f56eadb9ff2500d17d024e06a45aa045d9a528563268bf8ba0682c97fa8b873262bc5f08edc71b1710d0eeb1253664540358c710736

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\DFL_DroneIncident_Final_EN.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1460

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1460-53-0x00000000751B1000-0x00000000751B3000-memory.dmp
    Filesize

    8KB

    Download