Overview

overview

3

Static

static

3

NEAS.bce13...b0.pdf

windows7-x64

1

NEAS.bce13...b0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    151s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    22-10-2023 18:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.bce133d5b828c44c8b37059ec358ebb0.pdf

  • Size

    89KB

  • MD5

    bce133d5b828c44c8b37059ec358ebb0

  • SHA1

    f9a88afbd7ce43299b41c4d80cffb3f47f6981d2

  • SHA256

    bb4ed9e55d1b7a5b928682f18fe17a6929833eba4fc9683bc156313f35487c2d

  • SHA512

    2b88cead93099c3b06b9b31a4d3b307cb805666d0d01b2c1f1b8a38cccdef0746646735120c1b9fe209da3b008f2b723778fff06bc2772a8c0b11078167a5a2c

  • SSDEEP

    1536:3ST1ykWaDSW6fpEysB08Sxl28yI0pCnbViTOUZKKW6pOu26WPySEWAzYiXbDyLeC:iT1ykWaDKBEysBDi2tpqbIpkXu2tkpcb

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.bce133d5b828c44c8b37059ec358ebb0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1108

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c64b12a311fabdb0123d21b0da29b981

    SHA1

    e32b662dd3209037f01ddaadfd66c21cfd8d1219

    SHA256

    898d226e0b61efe977f3c0d99e862686200b5aa76f3cc74827c5c743c8ff583f

    SHA512

    fe95728b2bfe1d9a78dc38f4476985e1042a07f12b2a0bdd3dcfbcbac13e72c902304c69de258e9ccd9a95a462e8497aa93829cdb98c917ace00c9e42d5fc6e7

    Download Submit