Overview

overview

3

Static

static

3

NEAS.cba33...90.pdf

windows7-x64

1

NEAS.cba33...90.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    31-10-2023 08:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.cba337c674c1e74c4c52a6b079c5a790.pdf

  • Size

    46KB

  • MD5

    cba337c674c1e74c4c52a6b079c5a790

  • SHA1

    42ad0546cedb9e6a48d8b387a3f52e7d0c141fbc

  • SHA256

    96abd7463381cf60e0faae913330bcba05342438cf2a171009084dc5d633b08c

  • SHA512

    dd790e39cdaf428a27bbe4d7eb9a02fb7341ebce39d88f04a7842cf817011ef3beb35f50127b5f9c837c3a43d52005ac5ff3f756f457aa236974d569f54236b9

  • SSDEEP

    768:vAs/zbX7G3jrzJCM2N2uK9/DRzCErgKDGSvy8/VryW70YiRT+tnJUAGzZIApnqKD:9XEHlCrZsSRUEq40WimcXBRWUIIv6IcL

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.cba337c674c1e74c4c52a6b079c5a790.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2332

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8425b868ec7138faa2b7a9a92ecc59d9

    SHA1

    434174e629729e58e00c40988626c4ea39dc2bf2

    SHA256

    37e76c7a5d5d7ddc5df8ded7d66bb0149bf13828ef42366e975956620ccea87c

    SHA512

    7d2e8777d0bf131867a612f0295f6ab8d86b5e9745d560c7605a94b4d58f9375cf7124a1d4f75c5dca1b0bf60513a2a46e73acd14c2f9678bf064f127e6c2f0d

    Download Submit