Overview

overview

3

Static

static

3

NEAS.7c93e...c0.pdf

windows7-x64

1

NEAS.7c93e...c0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    151s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    16-10-2023 18:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.7c93ec0eb447bc19d718f2b6890b65c0.pdf

  • Size

    51KB

  • MD5

    7c93ec0eb447bc19d718f2b6890b65c0

  • SHA1

    2bc21923148b027cc1eb8a62a3f299bdb8f864f8

  • SHA256

    7ba0a4de414567f6ecdb84257e2b4f55044a1f10b2f141c0b58ae8cca0fd3945

  • SHA512

    f524457cd4f063ee5a89d9145987c3b13eaf7abeb40116a02ed7a9cddea275000b2ca193380a30c830230a63cae12c3e72ab059741f332c6abf0b77ffcadb574

  • SSDEEP

    768:VZKAqZ1Q3Z7nfZCENZBTp6Nzas9Suft9y6rl3wJPJsyqW4XSjjFYLpRr8Fy6hdd5:+AT1nMEnbuFaJd52SFYLpgLOzOo93cd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.7c93ec0eb447bc19d718f2b6890b65c0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2880

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7af43c5c0a21d9df8e96ec226fdab076

    SHA1

    8bbd592016625a24406914b7da18128c519b305a

    SHA256

    6ee537c303ba16102de78fb0e94302b4f8e93634601fb01014c20df5e938a001

    SHA512

    68e8e60a8a6f8a0bfcedbefcb59916dc6258abcf8035c5ce749618749afe2394bfa0ecb25d0bfe7e076fba3d170117b8f112aa3e81f0b95c7aa6b653318ff9d0

    Download Submit