cabffc7daeb0173acbbbd1af96a337259c5fd42acf6e6df3052f2ae12329c4d5 | Triage

Analysis

max time kernel
142s
max time network
48s
platform
windows7_x64
resource
win7-20220414-en
submitted
21-04-2022 13:38

Sharing

Report Analysis Logs

General

Target

76064-~1.pdf
Size

21KB
MD5

5231d548b3e1aa70f8fce430cab8ce5d
SHA1

c4002a99c22ed5937c9f682cca9b3ac3a22a8a00
SHA256

cabffc7daeb0173acbbbd1af96a337259c5fd42acf6e6df3052f2ae12329c4d5
SHA512

3efb8d7e16b986993da4518e377fbbf1ac9932121cc1a29c45e2e78b6854d27589acba931d1f5e20466ab40a92d98d9201d91d53d8c6a721c1121fdb9d3703e2

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

836 AcroRd32.exe
836 AcroRd32.exe
836 AcroRd32.exe
836 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\76064-~1.pdf"
1⤵
- Suspicious use of SetWindowsHookEx
PID:836

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/836-54-0x0000000075381000-0x0000000075383000-memory.dmp

Filesize
8KB

Download