Overview

overview

3

Static

static

3

NEAS.c7109...70.pdf

windows7-x64

1

NEAS.c7109...70.pdf

windows10-2004-x64

Analysis

  • max time kernel
    150s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    15/10/2023, 10:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.c7109fc54f35adbccd37b4c4cc2beb70.pdf

  • Size

    53KB

  • MD5

    c7109fc54f35adbccd37b4c4cc2beb70

  • SHA1

    934b8570c145ac82203e6773fade8be57360c6fc

  • SHA256

    b338f1a7cb45ef4be824e260019466a2a14f069abe74a0ae605168aedba988f0

  • SHA512

    369d05cf22d1f6ed1325f5bd8230be1b2d6b6e5349405cd87fa56772a9f1fb3864056c0a1fb27f20102a5fe76821b3231878c95a48839a9293396785570f7cd8

  • SSDEEP

    768:VzqhpVz1tBlzsz3SyfrzxaLz/hSY3fdE+0uft9y6rl3wJBXQaWO4XSjjFYLpRr8T:OUBs3OLuFaJN92SFYLpgV2yhCVenJ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.c7109fc54f35adbccd37b4c4cc2beb70.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1724

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    42cd9f6aefea6bea2b0e93813b0f2e0b

    SHA1

    acb09d573a0b7591a02580f7fdde9eae8804dfc2

    SHA256

    5a0d615c4c4c8a6e2c75d9e2b6b537af47babfcc9bf27d464ef87244ec78e57b

    SHA512

    18493385d2a936017c8d1f1a3dd365a99a240447c01a05e4000b78b2d7690d7e26d43386a66497be9e08844ac79782cb534aa06596da3ac8fce7c6fe6a4427db

    Download Submit