Analysis

  • max time kernel
    151s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    15-10-2023 10:56

General

  • Target

    NEAS.51cae190ceca28594e1a3af005aec050.pdf

  • Size

    608KB

  • MD5

    51cae190ceca28594e1a3af005aec050

  • SHA1

    bebd04821365756883a4011026a0caa8ff5de488

  • SHA256

    85f1afd031b31a755b8ead9a64b7efdb85c47bc035b5fa4989c725c7fe15e942

  • SHA512

    3bf4d0e092d1e54c3f1dabb5ce4532f07e47c99a20e738672787f01447d9391284d11940ea13c11eadcf3d4a209c718df057003212b43e63fa68a52f112a2b5e

  • SSDEEP

    12288:sk7jcRUeGro26VPjO9dOiVBUnHaihNLMTJvGG9533vU3Jm:jcmRrT6c9lBw6inkxMZm

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.51cae190ceca28594e1a3af005aec050.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2068

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    d7dbdff9a2cd0cca27bdcd3213a7d0a3

    SHA1

    1ddc90953bec2f98b4e82c0c9b24fd9088d25568

    SHA256

    657d222502f0022144c96d48f7a49d999076219b4255dfc4f7160e99d932cd3b

    SHA512

    edd153329ecf04aa3e7ee0daeb477af13850953bd8ad70bd217c4ccda16c4acb4e37409bba620e76e8b0b2743a2b46f66cb8bd515b7e1745e91b51699b1597dc