Overview

overview

3

Static

static

3

NEAS.6604a...c0.pdf

windows7-x64

1

NEAS.6604a...c0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    182s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    15/10/2023, 10:57

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.6604a4e7d04ece5c7bfcd946033746c0.pdf

  • Size

    120KB

  • MD5

    6604a4e7d04ece5c7bfcd946033746c0

  • SHA1

    976fd307b7d9a9dd074661bb3645178a296795c9

  • SHA256

    c49793677671d80c624845ec20fee791d5455e16541eedbb367580f5ae95cab4

  • SHA512

    b80f1d7270f0e9a8a48471e3d5bbdfb690a7699c35f646c71f62f4f14737c24ec27e279c061e4f86ac463fd5ffd39c7276db876dc8954e52ad411584b480a114

  • SSDEEP

    3072:f42f5Si56CLq0bahjnvBmH7mJjZmfKKQ+o1:dcXsKjnvB+mifNno1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.6604a4e7d04ece5c7bfcd946033746c0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:856

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          2bdcee506f782b8f3e5a78061154bfc6

          SHA1

          89dfb73422e7a4da35aa38c930062bd0c2dfe611

          SHA256

          91549fb48316a537c114da3f31696f2b8ad9a42157718948483e64562e421761

          SHA512

          497330dd1a5b748ab61c3d50324ffb4c49b8968238d0f4387d5ef783773364747aaf1f6b7976ef34af1042ad0c50c9e94b71af5fe9b275a600cf0bd7d055c04d

          Download Submit