Overview

overview

3

Static

static

3

NEAS.8f13b...60.pdf

windows7-x64

1

NEAS.8f13b...60.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    15/10/2023, 10:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.8f13bc4cdd445da10cfd2fb598f7a960.pdf

  • Size

    401KB

  • MD5

    8f13bc4cdd445da10cfd2fb598f7a960

  • SHA1

    1c8df57bbf74bd0f6403f4c5e8f96a2670b9efe1

  • SHA256

    865276bf5e90fb2a533ce986b6b6d94bbb7552363fe47191bcb9c1497905eb22

  • SHA512

    4b77b12d8f8f14821e1c734f9d216c1d4ad388073d07bf166453e020c53da0651ad1c8a83167dd1ef9c76a379bc79afe199f5ca526f0954c447fef1ae4f34e57

  • SSDEEP

    6144:oNfbnTTDUnu7Q5o1/jxPIJfoI9OJwbBC3viFDrtRwlOgGawVBdrYK0cP:oNrTTonu7Q5ovPoAUbo3vyYeaGicP

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.8f13bc4cdd445da10cfd2fb598f7a960.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2124

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    bc5e381fc627227ec50544cef828759a

    SHA1

    77fa5f1a800197ec20660cb99c621cb4e1419b34

    SHA256

    e01be910f8ed23167d8411d96396efe22ad0625e99fcb21b6c11251258c6d29d

    SHA512

    2460930166fc6ada0e545508951e4e2287e9d19f1f8bdf7252c6376a9d13ff59f08555105633ad5fa22dfdac780c828ed08d1a6967fa7b61a452a626876402a4

    Download Submit