123ba83089d6b0c4926b791ec4d8806610f853af7b3988dce6bf93a4c66d0df7 | Triage

Analysis

max time kernel
15s
max time network
19s
platform
windows7_x64
resource
win7-20230712-en
resource tags

arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
submitted
23/07/2023, 15:07 UTC

Sharing

Report Analysis Logs

General

Target

VIP Channel.pdf
Size

1.1MB
MD5

b222647be431b024b9a9289708ab9503
SHA1

6e4f7bf09e959590838a83929d81cab26a7c3143
SHA256

123ba83089d6b0c4926b791ec4d8806610f853af7b3988dce6bf93a4c66d0df7
SHA512

cbfa971deee7baae797dd8a9d2311bf4350d0c2f991eafc9b4205b0ab101890f8be221d458fa8614d176639003749049654fc96f250e1475fcff3054012cfde7
SSDEEP

24576:bxQv3dBbTLzVVNz2KhJ2I+vtUZQvVGW8dE5MAevxTD5UMnFgvtAsDbu:bxQXb3HB1ZAUK40295nCi

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 3 IoCs

pid	Process
2644	AcroRd32.exe
2644	AcroRd32.exe
2644	AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\VIP Channel.pdf"
1⤵
- Suspicious use of SetWindowsHookEx
PID:2644

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

Filesize
3KB

MD5
40c09fb17daf1179a3293059992a7617

SHA1
63072ac6f7571ff3b097f799c77ab85d915c212f

SHA256
7e3f8066aa83811d3caac1f8cb2a5682691e44a5d61cee7cddd7a3f05ea6d59d

SHA512
4d64d367c8c0331bb5f8a0bae4eb66db061a01840630428935a609bb061fc23cc54aa5cf6d0cca62925ed0bbf23a799dcfbf236c434757ec500400549a928553

Download Submit