Overview

overview

6

Static

static

3

Print--Par...ng.pdf

windows7_x64

1

Print--Par...ng.pdf

windows10-2004_x64

6

Analysis

  • max time kernel
    150s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-en-20211208
  • submitted
    28-02-2022 18:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Print--Parcel tracking.pdf

  • Size

    28KB

  • MD5

    a06aa3afe1060723fbbf48f5b7a5f460

  • SHA1

    a17cda094cde914f7271538dea29d0510a759bad

  • SHA256

    aaf7912432eb008211fef9e1dc374c8d4783d292c69d79433f36475b2a94f017

  • SHA512

    55b3ffd9cddea288218acced7df69467e3b530cd50ac395b7fe2d8a7f5f6559e134704bf82ae165ccfedaa90765abe8978e8f645b4f730981f6df8ef4afc3567

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Print--Parcel tracking.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:948

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/948-54-0x0000000075321000-0x0000000075323000-memory.dmp
    Filesize

    8KB

    Download