Overview

overview

4

Static

static

3

MEDITECH's...).docx

windows7_x64

4

MEDITECH's...).docx

windows10-2004_x64

1

Nuance Dra...se.pdf

windows7_x64

1

Nuance Dra...se.pdf

windows10-2004_x64

1

traversein...5).pdf

windows7_x64

1

traversein...5).pdf

windows10-2004_x64

1

Analysis

  • max time kernel
    150s
  • max time network
    45s
  • platform
    windows7_x64
  • resource
    win7-20220414-en
  • submitted
    26-04-2022 10:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    traverseinfographic (15).pdf

  • Size

    870KB

  • MD5

    3d70797d930e6c2e8b118c571fffd86f

  • SHA1

    13ad4585155a268afc0308eae16782107864f5a4

  • SHA256

    1bd0071cfc0c472bf9ec1ebd237e8f6fa34b7bb7a74c3792a3c6edcfe5d6bd21

  • SHA512

    c10985080a7fb3815b38ba901dcf1332dc64791291448d96f912db6c87dd5b6f504969f6f54bfc7ebecd795bfdec276d3b0dbd36c394771114f75a4e55acbb33

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\traverseinfographic (15).pdf"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1520

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1520-54-0x0000000075841000-0x0000000075843000-memory.dmp
    Filesize

    8KB

    Download