Overview

overview

3

Static

static

3

NEAS.7bcb8...40.pdf

windows7-x64

1

NEAS.7bcb8...40.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    13/10/2023, 20:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.7bcb82677fce016abfead866cd55c640.pdf

  • Size

    118KB

  • MD5

    7bcb82677fce016abfead866cd55c640

  • SHA1

    871ac1c76a83695febf5b7034355c5f7e9ebe37a

  • SHA256

    02561c880da40dff1af78f8023b1a91fe0e2b1763ba88c7ca9e1da212134f0cc

  • SHA512

    9dfc18ec49f5a248c0f8296a1d0a8a80d51ed90c3f609d233ff9defe3465fe008e5053e5fc88ae6dc1cd41fd3a8e318d4879b563d7147e1d94e6d6f5029ba9c3

  • SSDEEP

    3072:pKi56CLq0ZahjnvBmH7mojZmfPQ+oOMJ6:IXOKjnvB+m5fPno4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.7bcb82677fce016abfead866cd55c640.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1896

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1c4cfc03e9f6341f359b4e83a1812aeb

    SHA1

    ec5db1928c7e2bcb62b82d686e22113a8a8cc4c1

    SHA256

    3d4a476d0a3773f76ed88c2e3dc900dd75d66583dd4ffb3a9c32dd2af6668054

    SHA512

    3986470f83cee36c88ce32970ee0939b78ab9687e2a322fba25b5bb80ce33e5c014bb1ae6271a9dc04f80d679064619f71546158ed091f29037b30ab68fd0d4a

    Download Submit