Overview

overview

3

Static

static

3

NEAS.923a1...80.pdf

windows7-x64

1

NEAS.923a1...80.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    22/10/2023, 18:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.923a19494b7df0f4d3700f8e2c80a380.pdf

  • Size

    33KB

  • MD5

    923a19494b7df0f4d3700f8e2c80a380

  • SHA1

    fdf2a2ef178b759e74f9fe3eae41659d909d5dec

  • SHA256

    1925be1f7bbd8d60882b8a2b8b89f788b609f44523b1aac140c7d40076baf001

  • SHA512

    6b47bad8500e59df2b3a48277165e13eb353a7090563ba5799799a0eb5a555e1ce32333dc77368b83aa228a68a7b3f97a33c8d28e5ee7bd0a5df20622d1a88d2

  • SSDEEP

    768:kpJymKfrhcu/nneOeSYQZJrPszi58dB34CqfuVeKFbyG2LPFTQsCDEfcKTyPh:kpJymKtcu/nneOeSYQZJrIysBlFV2LO3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.923a19494b7df0f4d3700f8e2c80a380.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2924

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    88e7b6079c055f4e23cd8c022957b56f

    SHA1

    92a168220eee4ca45413cb5997b12f0569598336

    SHA256

    df47070e046db3bb832e2960066f6d7942eb8e575e9e44f6e71df91d09dac54f

    SHA512

    80479aa503780b031c0b44bd6d176b784ea949fb9e005d51ae67812a00352dec0b176f018f968c26df7eb2fe52d1cbdcafe1c86d7eeac81f8a43f61352f3dde8

    Download Submit