4df973acc021693096a58db45236ff78617905f38fdbb0eaecfa39acc0eaecea | Triage

Analysis

max time kernel
165s
max time network
48s
platform
windows7_x64
resource
win7-20220414-en
submitted
05-05-2022 20:55

Sharing

Report Analysis Logs

General

Target

OneLegalOrder_17895443/Mtn.pdf
Size

79KB
MD5

d1e2d6a2bbb5fd625e42a54eebb2d84a
SHA1

da935960bc7d11096ed480305fe3e8255886b22f
SHA256

e1497fdcbbf02deba9304129f41098905d7899e99f3d48c4901a0d16a243d0d6
SHA512

c2cef30a40cc7f3b05eedf81d51f0c56b1e255c4c4bd3e448764372913f8fde440584289cb5006e1086ff373b32b571084f8493251e6236993f0478d28eb366a

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

452 AcroRd32.exe
452 AcroRd32.exe
452 AcroRd32.exe
452 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\OneLegalOrder_17895443\Mtn.pdf"
1⤵
- Suspicious use of SetWindowsHookEx
PID:452

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/452-54-0x0000000075381000-0x0000000075383000-memory.dmp

Filesize
8KB

Download