Overview

overview

1

Static

static

1

NEAS.91929...JC.pdf

windows7-x64

1

NEAS.91929...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    24/10/2023, 02:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.91929b24e48760302d319001055a2760_JC.pdf

  • Size

    336KB

  • MD5

    91929b24e48760302d319001055a2760

  • SHA1

    ca253f4358f9f4dc0936ca40f26b37ea7fd680e2

  • SHA256

    12be2f1102fb477ebedcba73d4bb3a73f9a3446a9fbf268d1b7de67919ccbbbd

  • SHA512

    ae6da9ca61c097f9fb88aaba0ad3c5dd0e93f69159b626c025589378cee97b87782a95528821ceb043365e9322aef8f06f94d953e2100908634a264f4461967e

  • SSDEEP

    6144:UoSC4EjaK7UhRPcikW05++lJ4Ttlcu3jAUDKb9x6C0XSsa+pURyaH8ZPxm8UYQGT:CZhRUim++lOTDR3VKb8XSsarc1xP4Q

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.91929b24e48760302d319001055a2760_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2516

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    17f50e2dc7f53a3965c49a8be07a102f

    SHA1

    f7a7abc40b93435794f1e451a404cb3993dc7b6a

    SHA256

    d1abfb39bf23367025547f7ebb58a80aa5a7ea26b863c658407df7d17c863f67

    SHA512

    20c144235efb83ee668daaf86e953ee555567aaeefc30c2f2eec4460cb935859b910320e3e7a753f7a76ef68dd0befce084f190366eff940c8ac954b1c259821

    Download Submit