Overview

overview

3

Static

static

3

NEAS.d9e8b...JC.pdf

windows7-x64

1

NEAS.d9e8b...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    157s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    02-11-2023 03:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.d9e8b72d3d1181137fd793f09493f480_JC.pdf

  • Size

    61KB

  • MD5

    d9e8b72d3d1181137fd793f09493f480

  • SHA1

    d899e3e26325f39443bd50cd0b0bb726df51c4dc

  • SHA256

    b656fe404e5a8974d9695dca0b2b1c6a1b5d8941399f903ae793a1f4f8677ef8

  • SHA512

    493a0c456042780df078cc01e7be5b7c113b8913155c90ce44653db688c3a8a6e76274f53edc7c2f326b046948569e46bb9f7f1ab6d2509f14e2b68f1b237ac7

  • SSDEEP

    1536:AN3GjsVkPg0S6n5mJbC8xbBUfpnXWdg/jVUR:ANL84hC8ZBwpXWd8q

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.d9e8b72d3d1181137fd793f09493f480_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2028

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    369c3cf86c47c2df2a21e8015d9a87ed

    SHA1

    23ce3f472962eae6f8cb727f33c292802518e251

    SHA256

    80b70eeab2795f88995dc2dbabc2a61a7dd131822db90ce4660297f83df91b7b

    SHA512

    8f7574b5ed3594b35bd952c7a1cdc35fc1a27e5785320cab4730053d79b72c674c0fef343f72653cc961a3be1b5e6c52222b5b21aa1020d6a10c3d28bf033970

    Download Submit