66372ccb0cfff3bb5fd05096dcff77e745aa1b3378209294709599e8a965eb94 | Triage

Analysis

max time kernel
150s
max time network
51s
platform
windows7_x64
resource
win7-20220414-en
submitted
02-05-2022 19:33

Sharing

Report Analysis Logs

General

Target

66372ccb0cfff3bb5fd05096dcff77e745aa1b3378209294709599e8a965eb94.pdf
Size

46KB
MD5

66c788208057ce2cf859a4d205337618
SHA1

74246187378b63722f3d1ff152eeb101821cb5c4
SHA256

66372ccb0cfff3bb5fd05096dcff77e745aa1b3378209294709599e8a965eb94
SHA512

9c171d48af7ffd003549c19aaada94ef23f1f8631ea8da27831620b50a8873ed0cab5300e095e850dbdfcd75129248b15a59f7756780607bacff3ac9388cfa84

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

632 AcroRd32.exe
632 AcroRd32.exe
632 AcroRd32.exe
632 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\66372ccb0cfff3bb5fd05096dcff77e745aa1b3378209294709599e8a965eb94.pdf"
1⤵
- Suspicious use of SetWindowsHookEx
PID:632

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/632-54-0x0000000075391000-0x0000000075393000-memory.dmp

Filesize
8KB

Download