Overview

overview

3

Static

static

3

NEAS.7477b...30.pdf

windows7-x64

1

NEAS.7477b...30.pdf

windows10-2004-x64

Analysis

  • max time kernel
    152s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    15/10/2023, 10:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.7477baa5f439264e2d920b5202f50e30.pdf

  • Size

    47KB

  • MD5

    7477baa5f439264e2d920b5202f50e30

  • SHA1

    01d89490cabfd834b3509333229b3cd372bb9e23

  • SHA256

    07838b5e1c0ef42f3e48e1c302b2ac3574f8081f47d011c717adf3d9a2f22b12

  • SHA512

    15941e1735c964846a000501595461f1e4d6986e595be6e466b67939cc6b49a034c39b555000b237f445ac8a9132caceefb4f80c74c1ea5805b80e4c34a096d7

  • SSDEEP

    768:VzLrz/LUhSCgttEQ4DStc3fdd+0uft9y6rl3wJB5YW//VygKXevVpeQKnu5GoM8H:1UzLuFaJkeyhCVenAx2SFYLpgx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.7477baa5f439264e2d920b5202f50e30.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1364

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    376f3ea38925d1c52eacec9465eea94d

    SHA1

    40fe9eb5e2d5b08889c6cbd44f89481dbbae6cf7

    SHA256

    b69e58786f02fc81f94c1af2a3ff4fa6e793b4c4fc657cb0ddac8439cebc570f

    SHA512

    62c460a13ba391a1226977b87802a9100171a110a21a6941b580753cd386527531c5dd2e7768e794ef32dcf2408d68218d5a7a4dd8bb4d7607ba08a4ac69e78d

    Download Submit