Overview

overview

3

Static

static

3

NEAS.0c99f...JC.pdf

windows7-x64

1

NEAS.0c99f...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    153s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    11/10/2023, 16:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.0c99f8c5d704169fbfd6f2234f791950_JC.pdf

  • Size

    149KB

  • MD5

    0c99f8c5d704169fbfd6f2234f791950

  • SHA1

    5d5ca769c67e2f717aa75e9d71bcc8ed7394b434

  • SHA256

    4a21c7a15d9b6c6af7912900e1a34675fe5d48781cbc7f42fe3ef672b453df18

  • SHA512

    2dc22800f300221cf412069da9d6996aac47fb2e4a14758933f9b5768195bc9e657be479dba6cd35f9f75807fffd495300e544226a6d11e1280b71a35b09125b

  • SSDEEP

    3072:jDTO0jIkUGVb3M3TNwyY5DCemoxHl0tbNg:/KKUGR3M35gJdP4Jg

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.0c99f8c5d704169fbfd6f2234f791950_JC.pdf"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2812

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a79a2edd8f854892c7c0700b7c51fab5

    SHA1

    f1382b4f4ec8cedeaac124a3500c821efac31315

    SHA256

    1fd405d5f39ec497c35f47858c774d9a6ebfaef3ca699008a64fbc21fc6a8c82

    SHA512

    c00ec4b9e9433ef19e3c22070d2de7f5e6517b5456736ab64e792b856b9c7694ea4c7edffbc89c97c06095e124f22585f53f33f04a82b2bd8137ed1facc352ab

    Download Submit