26314f075fb2046ce9cbd955eaae13af57ade94c79b7ef0de99cbe731c40a979 | Triage

Analysis

max time kernel
157s
max time network
133s
platform
windows7_x64
resource
win7-en-20211208
submitted
14-02-2022 05:00

Sharing

Report Analysis Logs

General

Target

DTO 140222.pdf
Size

298KB
MD5

dbe5482b15a17cd14908bb30be6892d4
SHA1

ec0686847b24b3b3ae9a35b0ac32857f52510e65
SHA256

26314f075fb2046ce9cbd955eaae13af57ade94c79b7ef0de99cbe731c40a979
SHA512

f513e273e0e5848791906465c062aab11aff1778e912a171d72d05938b67c31019c87a8db7b911a5d5103fd6d547ff3081a7c510f82b60883a22366db53f160c

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

828 AcroRd32.exe
828 AcroRd32.exe
828 AcroRd32.exe
828 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\DTO 140222.pdf"
1⤵
- Suspicious use of SetWindowsHookEx
PID:828

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/828-55-0x0000000076071000-0x0000000076073000-memory.dmp

Filesize
8KB

Download