Analysis
-
max time kernel
104s -
max time network
49s -
platform
windows7_x64 -
resource
win7-20220901-en -
resource tags
arch:x64arch:x86image:win7-20220901-enlocale:en-usos:windows7-x64system -
submitted
10-10-2022 15:39
Behavioral task
behavioral1
Sample
ѧ/ʲôٻ.pdf
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
ѧ/ʲôٻ.pdf
Resource
win10v2004-20220901-en
Behavioral task
behavioral3
Sample
ѧ/һڶָ߸( ָ).pdf
Resource
win7-20220812-en
Behavioral task
behavioral4
Sample
ѧ/һڶָ߸( ָ).pdf
Resource
win10v2004-20220812-en
Behavioral task
behavioral5
Sample
ѧ/ ExcelԶָߵļ㰸��.pdf
Resource
win7-20220901-en
Behavioral task
behavioral6
Sample
ѧ/ ExcelԶָߵļ㰸��.pdf
Resource
win10v2004-20220812-en
Behavioral task
behavioral7
Sample
ѧ/ָߵExcelʾ-ѧ.xlsm
Resource
win7-20220812-en
Behavioral task
behavioral8
Sample
ѧ/ָߵExcelʾ-ѧ.xlsm
Resource
win10v2004-20220812-en
General
-
Target
ѧ/ ExcelԶָߵļ㰸��.pdf
-
Size
646KB
-
MD5
a5768a61eaa13eb6407ef83a35e7b197
-
SHA1
973e533eeaa2dcc43d135e8c29e5c1fad90de886
-
SHA256
10311ac982a0dd2037e98e02a83164da14b4c7cddda838a7e909bdbcab02b608
-
SHA512
8e0f448262f741b3373431f07d5a41a13f85d4cc02ffb7ff4fbbc6de8624b0e85c5713ed40f0613688889dc9473622dea446c57cac72fa78a9d0e2ce0acf7e4b
-
SSDEEP
12288:amCc80quQPUkalr7h1ik1ZMKm4E6YdXhp8PDqCAbYq:ic80qnskaV7hs6N/E/bKDqNbl
Malware Config
Signatures
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes:
AcroRd32.exepid process 1064 AcroRd32.exe 1064 AcroRd32.exe 1064 AcroRd32.exe 1064 AcroRd32.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1064-54-0x0000000075BB1000-0x0000000075BB3000-memory.dmpFilesize
8KB