Overview

overview

3

Static

static

3

NEAS.da11d...40.pdf

windows7-x64

1

NEAS.da11d...40.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    151s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    15/10/2023, 10:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.da11d38ffd3d098ef9eb3369dfea0740.pdf

  • Size

    178KB

  • MD5

    da11d38ffd3d098ef9eb3369dfea0740

  • SHA1

    ff585e5e80f85a80be03540282f2c8614c9d9bd5

  • SHA256

    40c3d3ae8a71e1f991a745f876a50dd82fad3ca14d150372a40aa23966dd4c50

  • SHA512

    b91543332b72b974cd6821c6800ea265a48bdcfd3c4bb5de83d886c8407e5110e6b4113100107d1f4ca5eac73e66a59c6a5976bb719527f500eef3af1fd3fb1e

  • SSDEEP

    3072:iqUuxp1oO2SFYLpvQ/EMY05rTeqo9AT8r2/v5oDgJgrXI1S9N9W:iqUudxFYLpo/S05rE9AT8r2HSc2b9N9W

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.da11d38ffd3d098ef9eb3369dfea0740.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2324

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    71d5b9fc0da6df5803dbf29d6507697e

    SHA1

    75b724e7d2aee5a15e8b231afd629c44f6e4b51e

    SHA256

    c4dbf362bb713b3f04368e88b37ee56fc15b18ae110571ccab8141d681340f99

    SHA512

    eb0367bb1ddfc7d0b143cc3e2261cb62739f4c1bfa692ff63c280e0e77606fd32154a2767428528d2373fdd703b478307148d94e3627d8301b7d9883595c06a0

    Download Submit