0e3e47697539f1773fb53114ab53229c0304d86ed35aec05e5f5bfdf3bd35f9a | Triage

Analysis

max time kernel
152s
max time network
46s
platform
windows7_x64
resource
win7-20220414-en
submitted
04-06-2022 19:33

Sharing

Report Analysis Logs

General

Target

Report of the Secretary-General on Peacebuilding and Sustaining Peace (advance version).pdf
Size

936KB
MD5

bc5f2edf0f23957e0fbbcd845c744eb2
SHA1

b0c167333780626ca8bd6b3b2a9fc54f20a59f34
SHA256

54b491541376bda85ffb02b9bb40b9b5adba644f08b630fc1b47392625e1e60a
SHA512

84f8c65a02dfd9db2286df405d711595e62ba114c8f911b30561b90818d579879542c4af09950ca8b8c2a9f82186e1cecc25933c17fef7c41e0fbf158d5ee102

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

1356 AcroRd32.exe
1356 AcroRd32.exe
1356 AcroRd32.exe
1356 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Report of the Secretary-General on Peacebuilding and Sustaining Peace (advance version).pdf"
1⤵
- Suspicious use of SetWindowsHookEx
PID:1356

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1356-54-0x0000000075361000-0x0000000075363000-memory.dmp

Filesize
8KB

Download