Overview

overview

3

Static

static

3

sophos-sta...wp.pdf

windows7_x64

1

sophos-sta...wp.pdf

windows10-2004_x64

1

Analysis

  • max time kernel
    151s
  • max time network
    47s
  • platform
    windows7_x64
  • resource
    win7-20220414-en
  • submitted
    08-05-2022 23:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sophos-state-of-ransomware-2022-wp.pdf

  • Size

    230KB

  • MD5

    0c371549ef85c6f3e53ad6f4f8340154

  • SHA1

    04a3c5a84a61019d72a23f3abac22895d6eb629c

  • SHA256

    1721f44dcfd02c8319b1dd122e82e74b949d254e77e0cc59ee1f55b01c4fed0f

  • SHA512

    1473a8e2254842766ae8a692dc5670a2c076c00eee2581679f77dc6d86c2bb6e80356f4a9197da2e165f3936a06625ab948499a3c6ce5bf26b9174ddbffa4268

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\sophos-state-of-ransomware-2022-wp.pdf"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1560

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1560-54-0x00000000752B1000-0x00000000752B3000-memory.dmp
    Filesize

    8KB

    Download