Overview

overview

3

Static

static

3

NEAS.0d631...JC.pdf

windows7-x64

1

NEAS.0d631...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    247s
  • max time network
    152s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    14/10/2023, 12:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.0d6312b7f8ce9f06d99ad1489578ceb0_JC.pdf

  • Size

    52KB

  • MD5

    0d6312b7f8ce9f06d99ad1489578ceb0

  • SHA1

    97f60a1797cb4f05894d80b0d680075d2edda876

  • SHA256

    e0926aae7ac5897aed7e010e763350cd60a84de8c391418d0feaee6082df75ea

  • SHA512

    c7b300a470dbb7cfbf13c12a9f1c9ab0f83142916f963ca704b8bef6920dbb909f2f85c02c2b255e9a3584c20c167c42755eaffe9e9cba218cccf759e1101412

  • SSDEEP

    768:qAs/500tBdjwc1FO6S2bfh5GckC7oiD6vq8CVjy87wY+RO+RnXUCG6ZCAEjP6G9H:iZz0eOJaiGCFyN8i77vv0363zvHIGk2

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.0d6312b7f8ce9f06d99ad1489578ceb0_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1972

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4b8c23ee39355723d264f062c975173b

    SHA1

    d9a00b0293cf03c3b9eed0bf3154c56f741ec66b

    SHA256

    d37f6bade62b6a8a1e324913ed07920ea694a699f5a5f9497a9c6ecb1d1f39ca

    SHA512

    07e61c8b34c7d648583decf8ed1605b94b952d14ef09a7276ce4ce08ccd01679248a95c00662d1918faa8c2c2a8ca8bf5f40263a649c7fae35ae9b8bcd2d08ae

    Download Submit