Overview

overview

3

Static

static

3

NEAS.029f3...JC.pdf

windows7-x64

1

NEAS.029f3...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    151s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    14/10/2023, 09:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.029f328d99a236f88ec19679c38634f0_JC.pdf

  • Size

    110KB

  • MD5

    029f328d99a236f88ec19679c38634f0

  • SHA1

    a00db7afb6d19a0c995e432e0bd30529028763ef

  • SHA256

    2127efb67779caa5108c469549113915ee0a58dd2ae0279422744238a50b8af4

  • SHA512

    ca503659d05d6f4e491c59cdca20a3bd27e683737e9b5e39db41bde5887bbec4381288c7c8e6ba6eb0be66a50aa3f65e81c436886266ae34b54e7460531a2e3e

  • SSDEEP

    3072:hfU1ex2SFYLpsDzlJ/Wih0YEBqknFgUgcQfHb:hQkFYLpszlJzh0YEoknFpt4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.029f328d99a236f88ec19679c38634f0_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2340

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5b170e59fd7ec9ebad8162481d91681e

    SHA1

    e2c5383a081a7e4cf31dac50ba2bf974cbeb97f4

    SHA256

    0d2d1a58f352d16629d9dea174400997f825c27873611cb03fd6e0b5098897f5

    SHA512

    b50bf38f3a39ddff5974aaf31e1045bba9ffdf8da8ef9e44a9285bb8ba7599696e4301824935739bd2e4df349022387346015ceea719fb0a736c4f6d93ad008c

    Download Submit