Overview

overview

3

Static

static

3

Hello Dear.pdf

windows7_x64

1

Hello Dear.pdf

windows10-2004_x64

1

Analysis

  • max time kernel
    4294214s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20220311-en
  • submitted
    12-04-2022 00:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Hello Dear.pdf

  • Size

    233KB

  • MD5

    34e8ff6bcba7aac1bdbad32ce3a7e0a1

  • SHA1

    ab2dea7ce443927d372cb589be0e2f14d6a40d1e

  • SHA256

    80513a633a18499d7d3d1c000d449a098ac7768d9dff8ac4f18018e3bb9d5fbf

  • SHA512

    49cf1846760d6a764bdb83e7afe2fda31c951d261744cc01dfab7f663311fd48dc300407a7f22bc1cbc17df0650a56470f4143d09e7658a663713615559d1533

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Hello Dear.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1968

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1968-54-0x0000000075081000-0x0000000075083000-memory.dmp
    Filesize

    8KB

    Download