Overview

overview

4

Static

static

4

AZK20_A5_M...ND.pdf

windows7-x64

1

AZK20_A5_M...ND.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    29-06-2024 20:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    AZK20_A5_MAILVERSAND.pdf

  • Size

    487KB

  • MD5

    ad3e1eb06a97cad168bd13245d43dfc0

  • SHA1

    c0ac1e738b82eeb03524f80af98a1b8866167269

  • SHA256

    5cecfa453b318b997c9bb1dc1e4375b216335a748eaa303eb0b121096559c470

  • SHA512

    e5717489e11c5c7e7921dca0418bcfaf2b0b88032f3a19f2bf9d6b15d9e59cc59efdf202fb5e17d42f238133e8958a9665c7d93da1c6db408269fbfee7332184

  • SSDEEP

    6144:/i4s1vrFXCuwiUHe2tgZWCv1F+pVBMMDamwavOZen2RHjPHusChXh8rH5nz/Jv:/iRvJou4JwYByuscXhO5z/Jv

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\AZK20_A5_MAILVERSAND.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2472

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e4a6b1c032df04424de50f65526253c3

    SHA1

    e2f44f889f91161579381296e7fe4a8055a50836

    SHA256

    92d979983a3f0b016d0ef68de7de3ef531674dfb054fed349e1978c9594202b4

    SHA512

    18845c01a2f462cf65405f6035f0bd52fab26bb9f9a4209a3fe3fb9da251d76a245e6567beefcb053a66d09bf3d36ff4afd6289d65169053dd2e894ff9c4d9c1

    Download Submit