42b1884898ef3e8951bcb70b9f9475dc755b22af2d536bea18b6c08901a6b896 | Triage

Analysis

max time kernel
122s
max time network
124s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
31/12/2023, 00:29

Sharing

Report Analysis Logs

General

Target

21bbc8be9a0f44ad948e652a363eeeeb.pdf
Size

13KB
MD5

21bbc8be9a0f44ad948e652a363eeeeb
SHA1

75a17f2fe7646f313ec1a8a487b54e9a6a35c01b
SHA256

42b1884898ef3e8951bcb70b9f9475dc755b22af2d536bea18b6c08901a6b896
SHA512

bf02849fc4cb52ff09abb2168505968878d04c193e26d077a05ce75e9fd7d453dce631417b6cae552761a4f5f02518799ef33e3e9859cac50091700ffc76f120
SSDEEP

384:OhzaNwAO9GiCHZLJ0Zhrrl9Qi/60G7wuj:ehZGiMJ0Dr7QC6dwy

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 3 IoCs

pid	Process
3056	AcroRd32.exe
3056	AcroRd32.exe
3056	AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\21bbc8be9a0f44ad948e652a363eeeeb.pdf"
1⤵
- Suspicious use of SetWindowsHookEx
PID:3056

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3056-0-0x0000000002660000-0x00000000026D6000-memory.dmp

Filesize
472KB

Download
memory/3056-4-0x00000000024D0000-0x00000000024D1000-memory.dmp

Filesize
4KB

Download
memory/3056-3-0x00000000024D0000-0x00000000024D1000-memory.dmp

Filesize
4KB

Download