Overview

overview

3

Static

static

3

NEAS.eb3f7...20.pdf

windows7-x64

1

NEAS.eb3f7...20.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    22-10-2023 18:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.eb3f7fa3414db9c24b74789f714a1e20.pdf

  • Size

    251KB

  • MD5

    eb3f7fa3414db9c24b74789f714a1e20

  • SHA1

    4bb3b51dadb4659fdd3c46184693544215561076

  • SHA256

    b9d9b955ac689db94179a71fb13e7ad1c07d3965c7f3b7939a324c05cfb6dadc

  • SHA512

    32eaa927cbe79456b232c38e667de1ddbd18bc16feee1ed0b4617d3b80b7b7bd25e1844aeb7b470cc40c9c536b4e657faa378e632bf57b2e525eb3b01f43fafe

  • SSDEEP

    6144:3hXVKjnvB+mKfJnoGUz/P47CFafzfKWeVdmD8Q7nSJKU:xXV6nvBTKfpoP74+aLxeV4lhU

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.eb3f7fa3414db9c24b74789f714a1e20.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2212

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    031fa242698f5099548ad608a756fa12

    SHA1

    0a9c672b5527ae39b93381d49ace82896c4ced1d

    SHA256

    6ce38e9aa8d62a0d5ac9b5ec22f8b41ff29655eb23d99c644df370ff23adebfd

    SHA512

    b6d9c2ebe3125641d789948c8182d79047238024469bf1a1ba2f632009d1f0acbdbe58c767f22d91d997d5e8910f87bfc5ae2908e808b52d17ec323eacf10b8e

    Download Submit