Overview

overview

1

Static

static

CI22_SOTI.pdf

windows7_x64

1

CI22_SOTI.pdf

windows10-2004_x64

1

Analysis

  • max time kernel
    4294195s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20220223-en
  • submitted
    07-03-2022 08:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    CI22_SOTI.pdf

  • Size

    1.2MB

  • MD5

    1b01610275e37645fd80e522f10e5901

  • SHA1

    346055891dfb781e8fc7b2eebbb82b4d15110dc0

  • SHA256

    8b1299ec6041714cfee8c68f75dff28b2e2c708abbc75cadfab863e59b413099

  • SHA512

    3c4b249d58dcfb0a6b20589b336a3ad43b204e5effee1a93e5d15e6a8db5097d01e84472a2f96a5756d89f5f5ab5893691712ceffab94648ea3b724563a31588

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\CI22_SOTI.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:608

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/608-54-0x00000000753E1000-0x00000000753E3000-memory.dmp

    Filesize

    8KB

    Download