e068caef5c1a691d4b0a34749980de6ef06f9f786c36e7d86c37f5705454b212 | Triage

Analysis

max time kernel
151s
max time network
43s
platform
windows7_x64
resource
win7-20220414-en
submitted
02-05-2022 21:27

Sharing

Report Analysis Logs

General

Target

e068caef5c1a691d4b0a34749980de6ef06f9f786c36e7d86c37f5705454b212.pdf
Size

16KB
MD5

600a0e8f9adb7678d6bc71a425b91521
SHA1

8868abdbb009dd4324e17c032a57cc60f31f05ef
SHA256

e068caef5c1a691d4b0a34749980de6ef06f9f786c36e7d86c37f5705454b212
SHA512

752eceff993d21081a7b3bd3e5b60c47a81cf3b385efcef09b8cfbf99b0d3c319b143176b0ce702249b5d1ea11f9dfa12d754e28b52105f4d3f169573894b36c

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

1892 AcroRd32.exe
1892 AcroRd32.exe
1892 AcroRd32.exe
1892 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e068caef5c1a691d4b0a34749980de6ef06f9f786c36e7d86c37f5705454b212.pdf"
1⤵
- Suspicious use of SetWindowsHookEx
PID:1892

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1892-54-0x00000000756A1000-0x00000000756A3000-memory.dmp

Filesize
8KB

Download