Overview

overview

3

Static

static

3

NEAS.520fb...e0.pdf

windows7-x64

1

NEAS.520fb...e0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    201s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    15-10-2023 10:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.520fbcb6ca0547d51b9a3feb62ec97e0.pdf

  • Size

    194KB

  • MD5

    520fbcb6ca0547d51b9a3feb62ec97e0

  • SHA1

    74295a8d77d5ebb0837a7fadfbb5270f629c2682

  • SHA256

    bafa8637765cf1e7859781ed80fb8f801162b3b3b101f0740886672d1886a9c8

  • SHA512

    13fe7d6cc37dcb90193607962ff10bb0fe06c1c6a54535c7e930ce00cf96d11c5c9ac936c6dc32f5b4195879f08cc1c53aa2e821d884e8e857131ddeda1e97f0

  • SSDEEP

    6144:ijDDKPsKrPpcv20EdE7ia+qVS4LjjVz3LRhn4/C:8DDsvtcdwEWdqpL1zVh+C

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.520fbcb6ca0547d51b9a3feb62ec97e0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1392

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    85d83cb5a748ed4ceebdc5e8c6e6c963

    SHA1

    bd1b4276ef9782a4bd362b56719f3dcc371e66ac

    SHA256

    b409b82241968233a3e2f453138f55459aa906d115d1f8d7a2b68aa8c69515e4

    SHA512

    8c1ce044fe66cbacb71495e2353433712738e50ca42ea0a2a5798165f5ec6dca0b3173c6db263bdf6b3f26d65e7a43245e72809d63bff326dfe7cc44b083d204

    Download Submit