Overview

overview

3

Static

static

3

NEAS.5e6e3...JC.pdf

windows7-x64

1

NEAS.5e6e3...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    151s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    23-10-2023 20:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.5e6e3a1318de58c352028f5d5ecdcbb0_JC.pdf

  • Size

    72KB

  • MD5

    5e6e3a1318de58c352028f5d5ecdcbb0

  • SHA1

    76546ce3629de495f7820dc094bb9c6de980f3e9

  • SHA256

    bce6a86999e4efef5211fbf439687b09c779b0e2fdee55def2d356519b86a549

  • SHA512

    6f82ac9cf9ddbee1bf88baa3b5e9134a8df6e25ad8caec1dbebb93e0e43454a4f14d16aa8baf01b8ea12dca5e2679cd08469959e6e615e291e86dd2eeed25fe6

  • SSDEEP

    1536:EdqGVLo8u4ROtfLm9TnOXCgDF2222WieRNUMJ:EdqGVkAAtyOyusieRNUMJ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.5e6e3a1318de58c352028f5d5ecdcbb0_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2108

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    424615b857e30443db050da27c0a59d4

    SHA1

    67529db51edc44acddbc3d9a311250a5b0b7b4b4

    SHA256

    7e6e7835cbb698929a1ad9e205ec5c627fbff7482265202ca410a698775dfe25

    SHA512

    16d18b461edda3d6560e0b652c27b1640f3c48416a015e395a1659a2e519f169baa31166752dd6d70cbfee97d41244ea80f02dd9ed0628e02e3abc2d5e93cd93

    Download Submit