Overview

overview

3

Static

static

3

NEAS.1f303...d0.pdf

windows7-x64

1

NEAS.1f303...d0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    152s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    31/10/2023, 08:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.1f30328d02298271820d274704487fd0.pdf

  • Size

    33KB

  • MD5

    1f30328d02298271820d274704487fd0

  • SHA1

    5b6001ff28e90d7a9e0cc4990640b270403596b4

  • SHA256

    5134931a5f80596a3cd5b7a8ce24c676322193c8682bf2db7e1ed0d20978a09e

  • SHA512

    6f9dd280694f8c94f62689bb94ca2ed53ff37a5b6b447e9be5ced47a413b6415b22bf8ba48b0316ff43e5c457209138825f88e03425f2665258d3e1906554d86

  • SSDEEP

    768:Vzkzk2S+2zHkzWSdgg1kgzidsuft9y6rl3wJc0YiOx4XSjjFYLpRr8Fy6T:8S+uMhuFaJNW2SFYLpgV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.1f30328d02298271820d274704487fd0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2024

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    37036d7adea911189ff81bae36d64184

    SHA1

    876afb60bab26254c8407b74e140b9ade07623bf

    SHA256

    a149a3feef37c9f2cf4a8206e2d783ebf83a1e4ae82835dbe7ebe5134acd1360

    SHA512

    f38e992970aa7b841b1d1016fad03f92ce9c188affc0bba820e2c196f77562ea0bb6b0e73926fa9478e0e35a8b34097d7cb26d686c26104d57df19d5fca1d136

    Download Submit