Overview

overview

3

Static

static

3

NEAS.8fe5c...40.pdf

windows7-x64

1

NEAS.8fe5c...40.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    152s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    02/11/2023, 08:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.8fe5c78ac3f731e472a0269ae8eb2640.pdf

  • Size

    37KB

  • MD5

    8fe5c78ac3f731e472a0269ae8eb2640

  • SHA1

    fa251fea16ea3a5e9e834999a1818b3dc5cb227c

  • SHA256

    af334821674e43995367576f923617a04d3dd60c4405ceab5c31aec0de1d52ca

  • SHA512

    b286be7db2ee9cbe2941cfc728dc3adcac3ea205a1cb9c42c0efcedfa02e6e87dad3814dbfcc4d0e08b87a3307ac9c1193d6ac07d1847d40c05a3f6b4151a1d7

  • SSDEEP

    768:R/kMJHu+jS4DaSCQY2ZehKEYYZIRj0mN5TWicokA:R/q+jJDx3HEYYQj0k5jZkA

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.8fe5c78ac3f731e472a0269ae8eb2640.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2176

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    dea3c85b83f57f8b9c682f7925801e65

    SHA1

    04c977704a046346a79927b0085c31acc46ceff7

    SHA256

    d955d9425590fead7b1d944af52523604b5a755ce4378e7e7b74caddb43bd00b

    SHA512

    6336029f78fa94755cc160bab412b5939a089543ba5e527964cba5d7dd1d259b1be43b3e2836568f77698cabf90fdddff09973bf9f0b41b1edd3ee0378e7ed1f

    Download Submit