Overview

overview

1

Static

static

1

NEAS.28937...30.pdf

windows7-x64

1

NEAS.28937...30.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    22-10-2023 17:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.28937d8cfc3b32baa6d95b4d8fe43430.pdf

  • Size

    1.8MB

  • MD5

    28937d8cfc3b32baa6d95b4d8fe43430

  • SHA1

    b3bf5158c32ac73152c17cdc6b0b3e05c414085b

  • SHA256

    8e696725a61f9d0b6dc2552ff2a71cb463b55610d57ed1d5a8dac52c76c619f0

  • SHA512

    6ab83ce5dbe64c10019c84809577b387451538df1ac98702c387fd34c8e5f1313421fb61c792111628d1a200cc8f933e0687dc90bafd42819fc1ced5a3d7674e

  • SSDEEP

    24576:Lon62uVG9NAc/P8cgmv8Y2qmHArp0ndRmyowr0Pruepw7lJTpDhy9yH6ODkTPOyB:knmS+2P8z08Y4HYRfDBkVpzPO7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.28937d8cfc3b32baa6d95b4d8fe43430.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:812

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    623bfb55420cec8135bc7e98f86834fc

    SHA1

    ba9e8e6c7be3d740605d00ec34fa43ce6219f32e

    SHA256

    ebf14fd32479ecf7bf0eadfab1add246d61e033f1045cf0b12c918bccd6c058c

    SHA512

    10e6b1430422b805789c30b7f39fa9d23b154ded208e70a07446dc286c9269b31ff945ae18328fe63b575defe0b93ca0dc7eac18d8b8da92145e14e33b02fd7c

    Download Submit