a4bcf7b04d27ee71cf2e00488f98469ed8bec37171e80e54be60025a74645677

Analysis

max time kernel
151s
max time network
46s
platform
windows7_x64
resource
win7-20220812-en
resource tags

arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
submitted
07-09-2022 06:32

Target

Release/Important NPC Guide.pdf
Size

241KB
MD5

fbe061a7485f16e448a44bcd058f94d4
SHA1

3befe99c074246e86ffa6ea306ed1d39c4c3210b
SHA256

52dd900f6c0c98be786f91d01489ec77e391f7a0018bfa3f711ef21d786adf91
SHA512

42e2d3b7bed5b735627e1dd92e6e715b0416cc7938d7148e6e60692fde53bb3f99a39d864b9be456da7a01664a07db9f076ac9c7122d08bd32c84f38e596fce0
SSDEEP

6144:f1NxRB2IrFbj1t90gMvIK6Pu17bZIvOl1AaFq1aBdD8:f1NLB1Rbj14gMvIKFW01A3co

Score

1^/10

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

1976 AcroRd32.exe
1976 AcroRd32.exe
1976 AcroRd32.exe
1976 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Release\Important NPC Guide.pdf"
1⤵
- Suspicious use of SetWindowsHookEx
PID:1976

memory/1976-54-0x00000000764D1000-0x00000000764D3000-memory.dmp

Filesize
8KB

Download