8dd9508ea49cd7672e19e4bdac315882a3f3a99e6380564e4d3453df6e38b634 | Triage

Analysis

max time kernel
150s
max time network
46s
platform
windows7_x64
resource
win7-20220414-en
submitted
29-04-2022 02:00

Sharing

Report Analysis Logs

General

Target

DTO 290422.pdf
Size

342KB
MD5

2c2a981e3c5d5ea651a04adbb77a17aa
SHA1

d97a442fbc3ec32c6dbe65a8a095e52e55bdbb82
SHA256

8dd9508ea49cd7672e19e4bdac315882a3f3a99e6380564e4d3453df6e38b634
SHA512

27a0c16568112e0cb5c3f5f3c4e1f3247c3a2177797e28963bf8e017f95b41b9032a4844df8120c5edf5fb3227cf43ea42fe38aaec924ad44d72e94a941bd7f1

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

1744 AcroRd32.exe
1744 AcroRd32.exe
1744 AcroRd32.exe
1744 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\DTO 290422.pdf"
1⤵
- Suspicious use of SetWindowsHookEx
PID:1744

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1744-54-0x0000000075761000-0x0000000075763000-memory.dmp

Filesize
8KB

Download