1b67e551433aa671aa03eb2c6a43b8c286f76b5cd219939e1376ab02c84a2de4 | Triage

Analysis

max time kernel
151s
max time network
51s
platform
windows7_x64
resource
win7-20220414-en
submitted
21-04-2022 02:00

Sharing

Report Analysis Logs

General

Target

DTO 210422.pdf
Size

257KB
MD5

68226ac221b2a38d6c35e1c72e61608b
SHA1

fbbbe4b1f0f7ff2ddce844ec486dba86121da01e
SHA256

1b67e551433aa671aa03eb2c6a43b8c286f76b5cd219939e1376ab02c84a2de4
SHA512

6167a70ffc6b025f689b91c8d7c119bd9e998657c2d86b1a71e45cd0bc99e4f5c752030a825d178b9068e842523bf807215669770ff5efb2ffd7436e04dc40da

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

1648 AcroRd32.exe
1648 AcroRd32.exe
1648 AcroRd32.exe
1648 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\DTO 210422.pdf"
1⤵
- Suspicious use of SetWindowsHookEx
PID:1648

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1648-54-0x0000000076421000-0x0000000076423000-memory.dmp

Filesize
8KB

Download