Overview

overview

4

Static

static

4

CONFIDENTIAL_2870.pdf

windows7_x64

1

CONFIDENTIAL_2870.pdf

windows10_x64

1

Analysis

  • max time kernel
    150s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-en-20211208
  • submitted
    04-01-2022 09:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    CONFIDENTIAL_2870.pdf

  • Size

    154KB

  • MD5

    256aaff27c8be24721a1bc40f6a5aecd

  • SHA1

    3f2eebbb065c0f4f0d6cbf7d918ebbb63d5f5373

  • SHA256

    21521872ee249e48cfa682209fd96abf0a0a960a9b1d652891582123b9187258

  • SHA512

    fc4acf23c76e2b7821df1381f9ab0cb4349556714d597b2f33ebdb1f3eaa2ea8c01e720931bab71a17a12b9bb4664e27fd288eb878fcd118517af3a7c09f72d8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\CONFIDENTIAL_2870.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:288

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/288-53-0x0000000075D61000-0x0000000075D63000-memory.dmp
    Filesize

    8KB

    Download