Overview

overview

3

Static

static

3

MARSEILLE ...NR.pdf

windows7_x64

1

MARSEILLE ...NR.pdf

windows10-2004_x64

1

MARSEILLE ...NR.pdf

windows7_x64

1

MARSEILLE ...NR.pdf

windows10-2004_x64

1

=?iso-8859...22.pdf

windows7_x64

1

=?iso-8859...22.pdf

windows10-2004_x64

1

=?iso-8859...).xlsx

windows7_x64

1

=?iso-8859...).xlsx

windows10-2004_x64

1

Analysis

  • max time kernel
    150s
  • max time network
    48s
  • platform
    windows7_x64
  • resource
    win7-20220331-en
  • submitted
    11-04-2022 13:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    MARSEILLE - EDF - 10144268423- NR.pdf

  • Size

    115KB

  • MD5

    a5fc8a031f94d8a6a8f8e3249ed931b3

  • SHA1

    71738a1315cd793a6878250d1dfe47c7ecbe9e22

  • SHA256

    928472cd50faae9edacbd789831cacc6ca89a3f1149fcd61f5384ea2ac820f3f

  • SHA512

    4ffbed441d53e7d23baa73cea9e3cf1f054486f2cb67a41c848bcfaefa552148b363733d56ea13b47022c1ccc84acf9ec851d1be1a083f3881e0b9ec886f2e21

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\MARSEILLE - EDF - 10144268423- NR.pdf"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1892

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1892-54-0x0000000075D51000-0x0000000075D53000-memory.dmp
    Filesize

    8KB

    Download