Overview

overview

3

Static

static

3

NEAS.604fd...c0.pdf

windows7-x64

1

NEAS.604fd...c0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    221s
  • max time network
    30s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    16/10/2023, 18:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.604fd5c92949dbf5335ecfe87718c2c0.pdf

  • Size

    49KB

  • MD5

    604fd5c92949dbf5335ecfe87718c2c0

  • SHA1

    6383abbe0f05bde17c1a1aa970a69764060b4fb9

  • SHA256

    28aadc05a968a2e2c4cd27e439dd03b6aeec3d5316037789e5a4010851650334

  • SHA512

    7e0ff6c9ef84c01067bc5480f5b8de103c57619cc81201244b8160eb6628c5b7b01d9d9efb572332e3aab60d5c00806163dbe85abaf8764e22d5e16b30236344

  • SSDEEP

    768:VztfVz1/uz0ozuY9Hz5E5Vudn3FLpmL8kh97MA0imz0Gu1Ug4XSjjFYLpRr8Fy6H:3RmC8kDMVRS92SFYLpgqFzOo93a

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.604fd5c92949dbf5335ecfe87718c2c0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2776

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5069fbd58c424af13c0e0a578d5b9028

    SHA1

    95d5748a2bac07b1736810d78897eb3291ed323e

    SHA256

    8d0c59f87fe89394806226275c4d89b72b5eda71ab7640ef733067f847b4ed21

    SHA512

    5b2804ef81558b429e880cca6474e4889c4387544d24083451005c6a939334ff6965c19ae373f592a34265016b4f6885fec942f323771ad7b7b3d8239b80f74e

    Download Submit