ba254d4194ac2027c4be2aab8563faac95482f83050d4bf0fecc3bb849b9f0ac | Triage

Analysis

max time kernel
163s
max time network
142s
platform
windows7_x64
resource
win7-en-20211208
submitted
12-02-2022 09:54

Sharing

Report Analysis Logs

General

Target

Discover All About Small Single Story Extension in The Netherlandstjsgrbezkp.pdf
Size

8KB
MD5

485c36dd99e7ab1e5d0269493eb59c75
SHA1

0db850c2e228569de74fde89ba36cfe58ddffa6e
SHA256

ba254d4194ac2027c4be2aab8563faac95482f83050d4bf0fecc3bb849b9f0ac
SHA512

868de573ea9ac5f9529c3bb30d0feeb4893048a101a245b962834068d23b0883a889245902ba7bf86dd54cd59a6018c6de0b43f365c5e3211bb5a84ec8d74a6d

Score

1^/10

Malware Config

Signatures

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes:

AcroRd32.exe

pid process

808 AcroRd32.exe
Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

808 AcroRd32.exe
808 AcroRd32.exe
808 AcroRd32.exe
808 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Discover All About Small Single Story Extension in The Netherlandstjsgrbezkp.pdf"
1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:808

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/808-54-0x00000000754B1000-0x00000000754B3000-memory.dmp

Filesize
8KB

Download