Analysis
-
max time kernel
147s -
max time network
46s -
platform
windows7_x64 -
resource
win7-20220812-en -
resource tags
arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system -
submitted
11-09-2022 06:48
Behavioral task
behavioral1
Sample
Security Incidents Response Against Cyber Attacks (Akashdeep Bhardwaj, Varun Sapra) (z-lib.org).pdf
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
Security Incidents Response Against Cyber Attacks (Akashdeep Bhardwaj, Varun Sapra) (z-lib.org).pdf
Resource
win10v2004-20220901-en
General
-
Target
Security Incidents Response Against Cyber Attacks (Akashdeep Bhardwaj, Varun Sapra) (z-lib.org).pdf
-
Size
9.4MB
-
MD5
e726cd783d8663b002f97e3b4b944805
-
SHA1
b39d1b8707595a89db57194a4e780b984b927496
-
SHA256
de0d13fd6865d31ff5ba229c719bd6f1998ca164cf9a98d1d6f8d0a3e819c6c3
-
SHA512
a87a258d01730596f22e5cd8d3f5e5970c64eb107658b15ef7535b7f5d00cf95d819ae2bb47acc9be0e34530f5f37ca4e1fc0bb7c313f2a212b6ca7795240fff
-
SSDEEP
98304:JejzCA18DNAfZUvzrHAAGeKxgEp81/zXUZN4T1faAOi5fsyHxb7sVgjux:c/CA2+RgrHdGhgEpW/zXUnWfRxxPV4K6
Malware Config
Signatures
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes:
AcroRd32.exepid process 1184 AcroRd32.exe 1184 AcroRd32.exe 1184 AcroRd32.exe 1184 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Security Incidents Response Against Cyber Attacks (Akashdeep Bhardwaj, Varun Sapra) (z-lib.org).pdf"1⤵
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1184-54-0x0000000074BB1000-0x0000000074BB3000-memory.dmpFilesize
8KB