Overview

overview

3

Static

static

3

NEAS.e0aa8...60.pdf

windows7-x64

1

NEAS.e0aa8...60.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    152s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    31-10-2023 08:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.e0aa89f59c7a17feff796bf7867d4c60.pdf

  • Size

    37KB

  • MD5

    e0aa89f59c7a17feff796bf7867d4c60

  • SHA1

    53865c665a467f7b887f1ddbf3eee26bf1069860

  • SHA256

    d207a3bef531dcc7ae96b563a5992aa0f4ce39ab1f139ed30d49bb8a86bbaec4

  • SHA512

    15bc72737467efa8535852e81b67415b7ac2932bc2fbad0b899496d0965f9e6c973d36701a27e203052aaeab7a1bb3063e485e00619779444b5ba55267812f55

  • SSDEEP

    768:AehPalPPFAYzmq6cF6Bf0KoT+flio4peoCc6qwDdH:gPnt6Violio4Aoq7pH

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.e0aa89f59c7a17feff796bf7867d4c60.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1656

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8342c6bd65b40d48513137e53fb110b2

    SHA1

    ab30dbb1b31db7397bba2420d6bd44a2decd02eb

    SHA256

    2f0012bf489abb6cadf5ec831690f8936034a4fa3d60ff6090654f97387ce4a7

    SHA512

    8d579d41338602b10e05d931dbcc6ae3072b0904ffb115813437d0eb324753292d05cdb8aeb137a9f844ecee5f657ccb5eae8c7831b462c0f0057040380d15b9

    Download Submit