Overview

overview

3

Static

static

3

NEAS.7c5c2...f0.pdf

windows7-x64

1

NEAS.7c5c2...f0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    152s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    16/10/2023, 18:26

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.7c5c27a09ad69b68213942825ee290f0.pdf

  • Size

    115KB

  • MD5

    7c5c27a09ad69b68213942825ee290f0

  • SHA1

    44b957759656f0820c0d45aff065e2a9f1da3613

  • SHA256

    be30bf672487fb83a0dfc4b98f39855051e54e912c5286ab64887d8d29a8a3c7

  • SHA512

    5c41c309cbdab3d81f21c13716de2f1af3e1c07b454c245ee6589a1cff9d290a7e15a71a57d66039b4924c0ecdadb2bc3bde55f6d2af61c0b95abfe0b524ed2b

  • SSDEEP

    3072:9Wh0PAaPhfmqrVziPWXl1gRzZTBUhXcMiLE:9WWN5fmqhzcW7gVUn9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.7c5c27a09ad69b68213942825ee290f0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:344

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          00df31c6f61245056bd951ce9757285b

          SHA1

          6b29dea84b16ea899f46ac431b825d57532eb571

          SHA256

          d70e5b121a104c882b35102bfd820cfd5480c356809585100920b9aab0b63f07

          SHA512

          62af07f62c0b9398a6085b7b65464f3ed423c50da008d3e425423b5f6d80a2a11bcf7dcf22f7c028f4d610d6089bd95cbaa52e8a379d724ff2343e24165023b1

          Download Submit