Overview

overview

3

Static

static

3

NEAS.ed1d4...50.pdf

windows7-x64

1

NEAS.ed1d4...50.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    31-10-2023 09:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.ed1d46c1f5a69752003d221a0c78ca50.pdf

  • Size

    34KB

  • MD5

    ed1d46c1f5a69752003d221a0c78ca50

  • SHA1

    f8c6afe9ad36e7068ed35fc003e7bfeaf9632863

  • SHA256

    743550cb7eda8e3d0c6ff7808750f53f51978a69e28475517d138ac346858291

  • SHA512

    0b0332a8885054f6ba9b1d1992a32211f952faf707a747af85bae60206cb80f459b30b29c357ee550807eba8085aedb25cd89e8a6f0b8a84b024198b1400a2ce

  • SSDEEP

    768:VzXrz1cCQTAXIzLaInmTysH+uzsagTaKdxWnitkAJ1vmc4BCdKTmNNFHx4XSjjFW:4CQTxmT90kAJE0dFR2SFYLpgVk

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.ed1d46c1f5a69752003d221a0c78ca50.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3016

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    86e2e6dbd25ac9d5fcf1e2c47911be6a

    SHA1

    9ac457d86e8e8c46829cc7b4cd48d7de9af9d25a

    SHA256

    0b45707a4f6f4808ea0f8849cfb98eac7871718896d9d0346a1d2d9c37261018

    SHA512

    fd7eebd7c59b607f2df28d29ea9284c37116504e5c1f63670bb0fe0b1444672fc0e1bc0c8457d9a44ca5d6fc78f02b71031ada4a99ca013acb5b33596a69a196

    Download Submit