Overview

overview

3

Static

static

3

NEAS.09c9a...30.pdf

windows7-x64

1

NEAS.09c9a...30.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    31-10-2023 08:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.09c9a079e5c5857eb8267b6cdfa3b030.pdf

  • Size

    320KB

  • MD5

    09c9a079e5c5857eb8267b6cdfa3b030

  • SHA1

    ba784e922ebf5782079e344298943267699c5ffb

  • SHA256

    8d24347d2d8095072d9c13582321b76e63574989d35b95168e45f2c9c9b2c9d7

  • SHA512

    ff200b0e8da670417274dd7b27b71ea7e095e6872b074c28bded7843e68761183c1cba6c79b42e841010063b44d08afbb03e47fcd8a2cb7e55bf7f186f2cf728

  • SSDEEP

    6144:k0u0kr6IJDH2Tvubir6BawuYbZyG8R2PinSgVb8sLZgA2:Tu2bDhr6BanYb8dginSCbFdgl

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.09c9a079e5c5857eb8267b6cdfa3b030.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:292

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1d5fa28a080c3eaca18ca9cb8b3808c4

    SHA1

    0665e6aa0307d6e97a2b7b397fc0d0bd16106f7c

    SHA256

    63b587fe3de3ef55df3785bd046e911ea23f1f2d117421dbbdb5767a322f7743

    SHA512

    d86fb55028ffdacaa08a1c12d451fbff8ac1d2460b842db995b7b4599bd011491b2b848ac4656980582344644fd766257803b3ca05335d9b0c83c459dcd0d98a

    Download Submit