Overview

overview

3

Static

static

3

NEAS.732f3...JC.pdf

windows7-x64

1

NEAS.732f3...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    185s
  • max time network
    52s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    01/11/2023, 22:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.732f30e8495975566c84fa85ad657780_JC.pdf

  • Size

    34KB

  • MD5

    732f30e8495975566c84fa85ad657780

  • SHA1

    8a11de7052bb15b86650e3d67a19c67db693708d

  • SHA256

    6218193da2bed5a5a9643f2fc3153ade2b61b0b2b6b2ce0d6f6146bdc8e286e4

  • SHA512

    ee7c310d332820de9047700193c1fd2f61715872b334e154e03a239ef2bf20d61444f295c395827c556f17e11842601af5731dd3e74d3fa3c01aeeb2c2f0050b

  • SSDEEP

    768:DbSjsm7DulmBLAuWwBY5Tmza+9knBsOnz/aIcwn2dwlMIWfbFcMfAz4kiWDm69lU:3SjswilmBLZWICuIrc9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.732f30e8495975566c84fa85ad657780_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2740

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    50b58e0963a5d34407ac0f1c74b0a698

    SHA1

    f5ab490e3787aa60126350924a5b94eaa5e7738f

    SHA256

    b85b0bf6bc618cb539518bcd737fc4297c0090605aa8879140a978589e33e035

    SHA512

    650aaa0a14acb102f48581dd68ec287776bd586a0939dd1e24e8c0499d0449b6ea76891650db6a440b30c779b143baa99e60b7a165beeeb375567aff30df9c55

    Download Submit