fd8b2fb37d0f146fef98dd7b6079fe40a4e04879e247f4a37ef12443ccf6c2b3

Analysis

max time kernel
120s
max time network
127s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
25-04-2024 14:00

Target

RevoUninstaller_Portable/Revo Uninstaller Help.pdf
Size

1.4MB
MD5

7c770b8371e21ba771f108549941b063
SHA1

44e44e7a8100c0540572cf8314dd1f39211f1134
SHA256

47b002d89da453eb352b176d63e08960ea3e3aa3d7069c8a5e8872621568ac87
SHA512

96691912f5f7dc1eb7e851e8ea6fcdac82d6c92740a2accf0f1a01a4f9f617140fe7e77704e41e918286564606e6065307fdbdf2a6f1ad384b1cfc7cfd4c5b81
SSDEEP

24576:60eF1JSdt+cVqoIQC7ZiBI2cj2MWY8kayZpN5h4Ia4pSyNVzCc8pt:YF1JSd7C712JHinZ75G/DGdWt

Score

1^/10

Suspicious use of SetWindowsHookEx 3 IoCs

Processes:

AcroRd32.exe

pid process

2244 AcroRd32.exe
2244 AcroRd32.exe
2244 AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\RevoUninstaller_Portable\Revo Uninstaller Help.pdf"
1⤵
- Suspicious use of SetWindowsHookEx
PID:2244