Overview

overview

3

Static

static

3

NEAS.12e77...JC.pdf

windows7-x64

1

NEAS.12e77...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    193s
  • max time network
    156s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    14-10-2023 13:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.12e779af15a71fabc016d9a231728b10_JC.pdf

  • Size

    46KB

  • MD5

    12e779af15a71fabc016d9a231728b10

  • SHA1

    670b282fd37d6f5835fc720864acc628d8dd499e

  • SHA256

    4317d7b5a344313c8d2ddeffea348f820bc5b4c4969d9ccb68fc339a0e52f9c5

  • SHA512

    402d989893762a30fb92ff54c2b260830d95ced7990da20e2082525e86a27917c2488cd52e7069904c0083f443f325f3daeb6c5edf35e467ad874cb5727b9eef

  • SSDEEP

    768:VzPiUwtzkXoPyyuSMl/WNzas9Suft9y6rl3wJPJsyqW4XSjjFYLpRr8Fy6hddYut:AaFbuFaJd52SFYLpgLOzOo93qV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.12e779af15a71fabc016d9a231728b10_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2264

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ca3763428468b2d9e608dac9951c17b8

    SHA1

    8475a6b15f30fd8a88ca9b08423540360dbb4eb2

    SHA256

    627ccc950ce03f5ad10a699ee4e9bc6979afbcd97b9e8d4f0735050bc4d58f29

    SHA512

    836a3d8d838229a63f59ca37c8d453e71e4665bfe8763daedaef80576d64143b6aff1168ef5bdbac5eaf33bee52457c8dc3bc88277428cd7182598627736c0ad

    Download Submit