3ed75b22528e269c6e025dc4f5f2866a0bc915cd31c2f6ec337049e59b875427 | Triage

Analysis

max time kernel
153s
max time network
46s
platform
windows7_x64
resource
win7-20220414-en
submitted
25-05-2022 02:00

Sharing

Report Analysis Logs

General

Target

DTO 250522.pdf
Size

347KB
MD5

14178e481c837409f01855e5608a979a
SHA1

43aa9d2fcc76ab2f350e1a6bae2448d1a40e6fba
SHA256

3ed75b22528e269c6e025dc4f5f2866a0bc915cd31c2f6ec337049e59b875427
SHA512

f7a1a1e5071c6dfa2e1950ce3a0ce263d85f14bb1a2dee1fa1bf0c6aaace53338782a30999c44a221fc21d0a2f4c5198f5fc8307f091e747fd5f11990c1f0ae9

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

2040 AcroRd32.exe
2040 AcroRd32.exe
2040 AcroRd32.exe
2040 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\DTO 250522.pdf"
1⤵
- Suspicious use of SetWindowsHookEx
PID:2040

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2040-54-0x0000000075841000-0x0000000075843000-memory.dmp

Filesize
8KB

Download