Overview

overview

3

Static

static

3

NEAS.19a1e...JC.pdf

windows7-x64

1

NEAS.19a1e...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    152s
  • max time network
    138s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    02/11/2023, 11:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.19a1e4ac7a44b9f7dab5ed8725f3a450_JC.pdf

  • Size

    132KB

  • MD5

    19a1e4ac7a44b9f7dab5ed8725f3a450

  • SHA1

    461277abe58a57d8813a0329f6cd0532e4c362a7

  • SHA256

    9737444ebf034b4eb44ad7afb8823f40e44073e6447db625b29226e3c60141f0

  • SHA512

    89a064485fb50a9717d05fce8471b5a3416ab7deb9073c8233536131a08390a07834ed6f7639e7882fe57ce9633d77bd8f4eed5eeedebc7223479e6c11514931

  • SSDEEP

    3072:cuPOjhstm7FrglHM7hkVb3M3TNwe5DCemovwsuB:cuPOjhnFrglSKR3M35vJdosuB

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.19a1e4ac7a44b9f7dab5ed8725f3a450_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2944

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a724a74cb2885d78d4fec00e7a9e67dd

    SHA1

    3dcab1bbe7521d5239be5e6344b090ac53f15ff6

    SHA256

    a6768fb9b0a1261fd9462ec7627dc3d365c3f96158facb2d2651ebbdb612c325

    SHA512

    3e0d0a55d19752af913d7bf8a8b1351faf12ea8b68fdc4dc9a77c3d828cd8c166cae3d0dcfa06bef9e53e6c0afaa9fa57dea85cee496816e170af7fbf8ca9945

    Download Submit