Overview

overview

3

Static

static

3

NEAS.0d7a1...JC.pdf

windows7-x64

1

NEAS.0d7a1...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    152s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    14/10/2023, 12:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.0d7a1013e0e016242a261ad8f2eda630_JC.pdf

  • Size

    56KB

  • MD5

    0d7a1013e0e016242a261ad8f2eda630

  • SHA1

    aea1f0ff7b67fb250d2e33a1885850fdedb14e4a

  • SHA256

    c7c2b600fa18c7b001c8b0cf00e6f8e048d68fe1dd20a062580ed58d219f4674

  • SHA512

    798b7ad6c62fd269b110f3b9a61d7d97ba29de12440a8baa3859fa231db91b575ff6ab2d4f08c199f819e44b02a0b563ab13d99366be59ea00b2a5f4aec25041

  • SSDEEP

    1536:OjqYf3yK7BXGNn7l0KUqMd0saCUhzMr6C:gqg9gl0K6laCUdM9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.0d7a1013e0e016242a261ad8f2eda630_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2092

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d2187618cbc03641c99c28bcb0a00d09

    SHA1

    8e928e6f8cf8f731720033993ecd799f61ff153a

    SHA256

    affdd3d392ab77b1d2ba293a05a2fca3b20fb780459cd113d3a860e7b7dfa66c

    SHA512

    40c969649a0e49d763eb6c96a2ccd9568fec0cffe6e23b4ac1c8c147a0e2fee2b4de49be4c1ead97c83e0629acd8f3efe1e2bc93e4af40ce25653a8693bdb9e5

    Download Submit