Analysis
-
max time kernel
162s -
max time network
166s -
platform
windows10-2004_x64 -
resource
win10v2004-20240226-en -
resource tags
-
submitted
10-03-2024 08:30
General
-
Target
16161b6fc676740187f0d7936d0eb0c15a5d25e932f2d9fe07bf569cee28c83c.pdf
-
Size
5.6MB
-
MD5
ad40c0a607a4338d6b3447e2640b9df9
-
SHA1
e523f9367331ecffed5bedb91813c9ecc20cd4f5
-
SHA256
16161b6fc676740187f0d7936d0eb0c15a5d25e932f2d9fe07bf569cee28c83c
-
SHA512
686ec87c5e537c056103982088fbc8b347540d9109cb7fc28830de8a97bc419186a4ef6a1bc8cd40fa730cabdd314abf3e4e67cd72e31c7c8503fd487a4a3dce
-
SSDEEP
98304:xYV0/tF7Pn/qSnrC4z5KaQESsydhtSVD2Hx:xm0/tFDShKKaQtsydTWD2Hx
Score
1/10
Malware Config
Signatures
-
Checks processor information in registry 2 TTPs 2 IoCs
Processor information is often read in order to detect sandboxing environments.
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\16161b6fc676740187f0d7936d0eb0c15a5d25e932f2d9fe07bf569cee28c83c.pdf"1⤵
- Checks processor information in registry
- Suspicious use of SetWindowsHookEx
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=4136 --field-trial-handle=3192,i,2785050981002401924,4037047756083432660,262144 --variations-seed-version /prefetch:81⤵