Overview

overview

3

Static

static

3

NEAS.a5d4a...30.pdf

windows7-x64

1

NEAS.a5d4a...30.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    211s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    15-10-2023 10:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.a5d4a9eed9303f7ad8d8db9544781630.pdf

  • Size

    95KB

  • MD5

    a5d4a9eed9303f7ad8d8db9544781630

  • SHA1

    0061e4a599e70a653f610aa01425da4e562ec9f7

  • SHA256

    47d5bad59523f2de0b263ba633f53e98cb24fb557bd576f1e4c76ae175a3ca6e

  • SHA512

    97cbea4ba1f5c95517062021aec450a57faf34657797b2e26e9c64d97495099a195265b70468e1efb565925a1b84dff6c765ea318d0f143d15135dfd5d795f82

  • SSDEEP

    1536:cou3yKlEkx8M8mqnW51UNNoTbvKWRjw2SFYLpgdlyhCVenZxnVy8YtfY6i:cofKlE/M8uRXSUjw2SFYLp6ZVIZp4Yp

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.a5d4a9eed9303f7ad8d8db9544781630.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2264

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c7d8b068ea40ae46b27f1f6a6c6f96c9

    SHA1

    8650400fe9c01e4edc2a7ab9a9aa580fe11b1128

    SHA256

    f48f192e847cd347e27f5536e4c01df73d0371c94ff14ac99ba51f47779cbe81

    SHA512

    5475b0deead769f496216e2cf2b98e659c018359a09f3a649577b25957c161e3ef817ae0d6107c54efdf1c174d050393790ee4bc956f51f6414e01e7569a7ac4

    Download Submit