Overview

overview

3

Static

static

3

NEAS.0b5e1...JC.pdf

windows7-x64

1

NEAS.0b5e1...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    14-10-2023 11:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.0b5e18fbc30a4c1e6dcf7025364bebf0_JC.pdf

  • Size

    137KB

  • MD5

    0b5e18fbc30a4c1e6dcf7025364bebf0

  • SHA1

    21309ad7a958bd813aed28cc6a1b9d3dce3787c5

  • SHA256

    226016e63687060dc7df7f0649f74acefc50fd600d38fe26c62fee1c934c403b

  • SHA512

    60b2da70bdb19d682deb09a49ddfae497ee8ed10756b12daee303f94f9f4f1fefa6e0ec0b0e739c08b4d86fb13329a92867779a84c991253e4a4eaef1bd9e3e2

  • SSDEEP

    3072:j2Wg3L0jIkUVVb3M3TNwI5DCemoiGBQpDE/Ekc:j2WUKUVR3M35JJdDCDnx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.0b5e18fbc30a4c1e6dcf7025364bebf0_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1396

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    413f68edcdd896a97c500b7ddab77ff9

    SHA1

    469ddb54fd27518d73b58aa72fb169544cc9af73

    SHA256

    243dc6b22264ae51c56fd4b03672ae6416953f5fe5f10f92c5cb557085fdea43

    SHA512

    49216bd054e81402450964d6ad854a3c5be1b525745f3a281ae9623f6186862f2a6ff755f4069e15ac360e95bfac5b54ee8e3722b2da6940eb17b0cb43659570

    Download Submit