Overview

overview

3

Static

static

3

NEAS.6ddbc...JC.pdf

windows7-x64

1

NEAS.6ddbc...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    23-10-2023 18:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.6ddbc860dcbc64710942dc145bbc9260_JC.pdf

  • Size

    68KB

  • MD5

    6ddbc860dcbc64710942dc145bbc9260

  • SHA1

    1bd5d7cf392947cd087af69ba3d3d34e61f2c71e

  • SHA256

    4098b3b874d73b59199663fa36e2682d9cafd349c2057ccd3c9fde40567c6b33

  • SHA512

    8a67ec9ba288d1427c69bfb2ee97f26413d85a5be108b328ee6cac8a0b8c4f339c7b9c706664b9abe8d8b7a2362a9afd143e4989442986f74396422c0817cf14

  • SSDEEP

    1536:mdqGVLo8u4ROtfLm9TnOXCgDF2222W6GROTw/o:mdqGVkAAtyOyus6GROTYo

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.6ddbc860dcbc64710942dc145bbc9260_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2176

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ebe6ae0dfbf8da54cac2a1e618bc75e4

    SHA1

    0a21d2070f54ea53b55553ba2aeddefe88ea4e59

    SHA256

    7cc6d19905a2821bec485c9734d75ceed6c3a6ed3fbbe690255afba775bace01

    SHA512

    8fce61169563f14f2b373886c98edeff89fa14e8ebc928dc7dd2d4a32f2c7a33e8d5055ddd299045ff5d3ceafd241695207a752310e0653552839d40680a4fd3

    Download Submit