43f12a66f863ed4a5d2be2d71d4993d07937d2f69391cb05e9c66008af391376 | Triage

Analysis

max time kernel
150s
max time network
42s
platform
windows7_x64
resource
win7-20220414-en
submitted
02-06-2022 08:59

Sharing

Report Analysis Logs

General

Target

goddless-mobile-malware-uses-multiple-exploits-to-root-devices.pdf
Size

367KB
MD5

0c13eb80f14da5dcde799b51bdab64eb
SHA1

31c450a87ef5e08a9db3a0f850d20379e313ff1f
SHA256

43f12a66f863ed4a5d2be2d71d4993d07937d2f69391cb05e9c66008af391376
SHA512

39d1335d22aac7fda38919a0e72ca1afc0a6495db022032cb4cbaa8eede84ac9cd00f7ad0fb80eb61cae9c7c985cceb4221aca78c6e3492a4cecc7b7e307aa6f

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

1416 AcroRd32.exe
1416 AcroRd32.exe
1416 AcroRd32.exe
1416 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\goddless-mobile-malware-uses-multiple-exploits-to-root-devices.pdf"
1⤵
- Suspicious use of SetWindowsHookEx
PID:1416

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1416-54-0x00000000764C1000-0x00000000764C3000-memory.dmp

Filesize
8KB

Download