c0af74cccfc2d49ed94b5bb5aa5f3db6e997295d474d62c02eac81410828f2be

Analysis

max time kernel
4s
platform
windows7_x64
resource
win7-20220812-en
resource tags

arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
submitted
23-10-2022 22:13

Target

c0af74cccfc2d49ed94b5bb5aa5f3db6e997295d474d62c02eac81410828f2be.pdf
Size

51KB
MD5

ed0b62e924312ef2397fcff24159e0b6
SHA1

143f56688dff3c9c9107c8bb20ea0d798a813bff
SHA256

c0af74cccfc2d49ed94b5bb5aa5f3db6e997295d474d62c02eac81410828f2be
SHA512

8ed19a07451f165e90e557f671788689098e32e4b676f8605b509b4ca6c72a343b959bb9c0a05dc71f7c2e71d523397c9c978a419f256d63b09fbd7102bfa2a3
SSDEEP

768:etzEp/aW/K3i2f2WhxWmAnE3IldBmaYGohGQA8avBPBqHYJkk1x:95/3CG8Goh95avZBmmf

Score

1^/10

Suspicious use of SetWindowsHookEx 3 IoCs

Processes:

AcroRd32.exe

pid process

1992 AcroRd32.exe
1992 AcroRd32.exe
1992 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c0af74cccfc2d49ed94b5bb5aa5f3db6e997295d474d62c02eac81410828f2be.pdf"
1⤵
- Suspicious use of SetWindowsHookEx
PID:1992

memory/1992-54-0x0000000075AD1000-0x0000000075AD3000-memory.dmp

Filesize
8KB

Download