Overview

overview

3

Static

static

3

NEAS.404d6...70.pdf

windows7-x64

1

NEAS.404d6...70.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    15/10/2023, 10:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.404d672ab8bb40249989bcd3f412db70.pdf

  • Size

    49KB

  • MD5

    404d672ab8bb40249989bcd3f412db70

  • SHA1

    08bdf983ca22b4319b5fa717934aa8475a24c570

  • SHA256

    19ad2a4fd3cc98c709573e4a4f28c9c0914307cd04e8e3d7f16ee5131cd48cfc

  • SHA512

    3a265907cb1a4563125a43075b8fa09e67b207c0395749104a5662230d6cba660197ca0feff912568460820782f415575ed3c7e8a7a7eab9c971c84202c2de05

  • SSDEEP

    768:VTw2T1L7jkIThVack/qZTXe6wOnafMPIHd70c4C1Dn9Cc6Kr4XSjjFYLpRr8Fy6M:5RBox1dFxnek2SFYLpgd/yhCVenJ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.404d672ab8bb40249989bcd3f412db70.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:816

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    94c64c792ed2be8a6f9a059d703d96fb

    SHA1

    dc546e4a510cf49fff60355db50d0aea5b2116d3

    SHA256

    1f95788e600e65a2c7f8bfa445bf606426a674787c0c1fd174a0127ea5718a36

    SHA512

    69c73b97a58a55ca2ba0c0800bf9a7b3de4220d0c7664c827f9725fac965c038ce78fb708236cd2d013d86924733d6b3a4be10935b984ba1f32b21889529f01a

    Download Submit