Overview

overview

3

Static

static

3

NEAS.7e3a5...JC.pdf

windows7-x64

1

NEAS.7e3a5...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    23/10/2023, 17:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.7e3a5d68de349c71317a347c0e3712f0_JC.pdf

  • Size

    55KB

  • MD5

    7e3a5d68de349c71317a347c0e3712f0

  • SHA1

    169428094db6fcd79d6bf5779e6c33258adb2a6a

  • SHA256

    fe84904f1b2da62e7eddff47f9f5185132ce823849f9ef568713aad2c4a1c7a4

  • SHA512

    7e0667602d53fe6c0f1c1dd7cbc9535bc22be5bdc097ec463182a3b6b1bb3532d67414609866d911cd65a839f0ae5a46253fae079d82cf1fbbfa8980d62fbb4f

  • SSDEEP

    768:XuzdNIggou41dMV+foYlP138FO+tTmj8u57PF9e7GjifZW7H9O1QV8Ke:+zIW1dMV+foY5CBTkd5J9eSqgWKe

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.7e3a5d68de349c71317a347c0e3712f0_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2196

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b018698ff41bcafb09e87d37e392132c

    SHA1

    0af1f13209de59922863cfba0d280d50a6591faa

    SHA256

    24c249602cdfc64bd686234ea37c2a5fdaa2e866bbbe3adf2a217e6f96403f99

    SHA512

    d89da72e98b7fbad60aa7e0aca8ac582f9b3a515288f7a87c344095066b854275834f94bd4aca7c06a147dac78db14b5844e0e1bc47cc1a7222fa4ec6dabf559

    Download Submit