Overview

overview

3

Static

static

3

gzcizt.mex...um.pdf

windows7_x64

1

gzcizt.mex...um.pdf

windows10_x64

1

Analysis

  • max time kernel
    153s
  • max time network
    33s
  • platform
    windows7_x64
  • resource
    win7-en-20210920
  • submitted
    29-10-2021 19:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    gzcizt.mex63 abph63 fl.swskz63 f.hris63 .ljgku63 fcrl63 w.wjmxpfu63 eu.rahah63 x.cysm63 lcgg.xk63 tiyweflr63 .um.pdf

  • Size

    193KB

  • MD5

    3139f85661d7e09d51dafd9b676a62d3

  • SHA1

    3da301f5a38dd95b0d30c89a55455d13ea29c6e2

  • SHA256

    132537de0b8352e6a8fd06e8daaba526cadc21ec1b5cd65f5c3bb269aa51981a

  • SHA512

    7d9ce67207330de5f36a85065760b4db5a2ff009b12271ff274951098b9bfd4be7c4732db58413503b963064c7cccf5e29ba263cb7fe8cb8247d199ed53a3fa3

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\gzcizt.mex63 abph63 fl.swskz63 f.hris63 .ljgku63 fcrl63 w.wjmxpfu63 eu.rahah63 x.cysm63 lcgg.xk63 tiyweflr63 .um.pdf"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1720

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1720-53-0x0000000075331000-0x0000000075333000-memory.dmp
    Filesize

    8KB

    Download