Overview

overview

3

Static

static

3

NEAS.098c9...JC.pdf

windows7-x64

1

NEAS.098c9...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    02-11-2023 22:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.098c9964d4e70e71e88e1bc1ef207e80_JC.pdf

  • Size

    34KB

  • MD5

    098c9964d4e70e71e88e1bc1ef207e80

  • SHA1

    59dd855f32599ab745a0784c6aebe483cc0ce798

  • SHA256

    8b2df66a96530c59438d1804722c4fceef94da08f48dbf97e7a986cfd428a198

  • SHA512

    3d1f53cd1245665324849a199238031557ed748cbe673b8aa2a297959e9fbd002be8c20e4b966c2a30eb290f2bdcd2a28a599fc58458df1930115181415b6ef9

  • SSDEEP

    768:VfQj/8nfsEHf6DyDMhcvf+qvtds+mvPWa/KKuft9y6rl3wJmyqcYd4XSjjFYLpR6:ejOf8BuFaJdI2SFYLpg3Mk

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.098c9964d4e70e71e88e1bc1ef207e80_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2056

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5df410bf01ad96fab67d3df994c95db5

    SHA1

    8ae42a1c7824e9d267932820b5679b33359c7af4

    SHA256

    b08ebd85c317aca3f169b371f9658c8aba0d820c7b819e16f9300a6c2707692b

    SHA512

    a0a0cdf47f0f2da5cd91718046ff2fb6eb5f9ee276ac73d21c5ef75a0fb7b14aeb9ee14f076f9b044c0e7b71dc58d1ebd146ea5c708cecd4e0df30f86e6ba91d

    Download Submit