Overview

overview

3

Static

static

3

NEAS.85a81...a0.pdf

windows7-x64

1

NEAS.85a81...a0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    151s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    16-10-2023 18:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.85a81fd419da8ac9f903d36bc92e36a0.pdf

  • Size

    83KB

  • MD5

    85a81fd419da8ac9f903d36bc92e36a0

  • SHA1

    bc7c973a138353ad35f9020d18deab6eae4e7fde

  • SHA256

    77e2f50895e4643478a9b34b8fe54bb3aeff1cc1872ab9af0401f8ae6d163a1b

  • SHA512

    c3a6026927affbb5333c785bf721eae03488441e07c56118c0a7bf83b17dc2a8e9087072d9a6060f7fb02b63e3e3a8623073bbf9300f9ecbe068a5f2a6592db8

  • SSDEEP

    1536:PFofd2mgJCEZig7eF16Dvkosn+EVMn4YjD1oAIa/IRoR5+PWr5HwJo0SPBGAxShP:PAd2PX97eF18e+QY1uA2E5hwUZGAxYP

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.85a81fd419da8ac9f903d36bc92e36a0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1100

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    83a720019f00f7457ae6f6cd18f72158

    SHA1

    38646c6eacbcab955a9db5a8e88f0bd7616d49bb

    SHA256

    e60a6030e154ec544029978d6f34b6efee9f211854d0fa2c444e4b2fcdd199cf

    SHA512

    6ac924065a0b92a76b20c17c2b491cf4015ae42254c139c6621bec8fdac3d63f39d0f3d2fa82621bfbef1b0de22a79a2f50641e8abc2977673500ce34b1a53bd

    Download Submit