fc83a0e2dae1ba7248c5e72b1dbc9b8abebd3d252c6610bf48b85872926050fa | Triage

Analysis

max time kernel
4294094s
max time network
18s
platform
windows7_x64
resource
win7-20220311-en
submitted
30-03-2022 03:39

Sharing

Report Analysis Logs

General

Target

fortiadc-v6.1.5-cli-reference-guide.pdf
Size

3.2MB
MD5

002072122e464f8b9eb016ff0ffbf1f8
SHA1

9bf0b83a8f2adb98711b52142ac1509e2ce3c49d
SHA256

fc83a0e2dae1ba7248c5e72b1dbc9b8abebd3d252c6610bf48b85872926050fa
SHA512

051e857342e96223cab236a04226c8c3f70dca295336889c87d66b1d1f299459262ffd571d931a5861d8e21f6399c8cc0b3561497ac2373198d78bbc8a213c21

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

964 AcroRd32.exe
964 AcroRd32.exe
964 AcroRd32.exe
964 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fortiadc-v6.1.5-cli-reference-guide.pdf"
1⤵
- Suspicious use of SetWindowsHookEx
PID:964

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/964-54-0x0000000075C41000-0x0000000075C43000-memory.dmp

Filesize
8KB

Download