Overview

overview

3

Static

static

3

No.Starch....17.pdf

windows7_x64

1

No.Starch....17.pdf

windows10-2004_x64

1

Analysis

  • max time kernel
    41s
  • max time network
    50s
  • platform
    windows7_x64
  • resource
    win7-20220414-en
  • submitted
    03-05-2022 07:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    No.Starch.Practical.Packet.Analysis.3rd.Edition.2017.pdf

  • Size

    24.1MB

  • MD5

    9573dfb54ca71b9f460f5d37b1b4e8c6

  • SHA1

    471c962645ee79054bd727a95c8a7c40c3132ae4

  • SHA256

    9708b2203c9eef8ff9398392810beba96db4354eb0d5c1a55d9838124ec9ea14

  • SHA512

    335cb8a90a27f8ca1dc7592431a1dcad5e703a501885e8bd470cf9d26229972bd837f17f0ce7e302b0579153e54689aa2bb9f256cb74bce32594922fa89c4010

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\No.Starch.Practical.Packet.Analysis.3rd.Edition.2017.pdf"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1092

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1092-54-0x0000000074C81000-0x0000000074C83000-memory.dmp
    Filesize

    8KB

    Download