Overview

overview

3

Static

static

3

KFG-Catalo...R2.pdf

windows7-x64

1

KFG-Catalo...R2.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    50s
  • platform
    windows7_x64
  • resource
    win7-20220812-de
  • resource tags

    arch:x64arch:x86image:win7-20220812-delocale:de-deos:windows7-x64systemwindows
  • submitted
    18-09-2022 04:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    KFG-Catalog-8th-Edition-2022-R2.pdf

  • Size

    8.2MB

  • MD5

    74b0e5a21b0325a046022bd06d551a0c

  • SHA1

    81fd0b650e306812fa27e5a3b2db8639ac1d753c

  • SHA256

    95e22f1c7669d9a3e89a419b84611f6e4c5ec61c7bc0c670de09a1a41e031c5c

  • SHA512

    79504e149a23fad288d238849978143b5aaff1ab147a0a990f336e486f878fd377dde42d03cbcee3a27f81020c5e9bc50ed1e37a4152f00bac9cb996ddec049a

  • SSDEEP

    98304:eqaPYkNwYOWCRaABV0JXMD2rU4aiybBhNOkLJKq1WUZw3RT4jbeD1Yz2T:raPaz/bBVPD+4xOOJKsWnR4j6D1lT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\KFG-Catalog-8th-Edition-2022-R2.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:552

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/552-54-0x00000000757F1000-0x00000000757F3000-memory.dmp
    Filesize

    8KB

    Download