Overview

overview

3

Static

static

3

NEAS.66db9...JC.pdf

windows7-x64

1

NEAS.66db9...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    02/11/2023, 18:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.66db9de67653eb628a56763b4685e8c0_JC.pdf

  • Size

    48KB

  • MD5

    66db9de67653eb628a56763b4685e8c0

  • SHA1

    5d3ef54f82436ef0ab0d0d7cdaf647d1f50e6241

  • SHA256

    237901a76b0d0aa6176f1a3c49740b93a8fdae8dd516e6c038790eeb4d43f2e4

  • SHA512

    b13e234517735d8904e370864556f1a651ed114ca82172342ab6d69502f3ee2f064645b0fad31bf6ec395704691f796302a8ce4518c6379f63da41dc2ec4a919

  • SSDEEP

    1536:GcOGj324uD10261Q1g4X5d6GTuF2SFYLpgilzOo93F:682f10zQ1g4X57TuF2SFYLpNlRF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.66db9de67653eb628a56763b4685e8c0_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2396

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0b7adda6dc7dce336be35bb25a9f6395

    SHA1

    eaaa482ab313d56f9b92d269ed7213059dae77b5

    SHA256

    0aac0d60fea923b7463f43eaeed631c8bce37aa9a91d5085e974fcdc4ff9e7c4

    SHA512

    7bcb4f02495ec8d604f264470a77b9f376e16822c437377254b7007a610191d0907566bbb8c83519292f854051ae07e250d30b97717b08b754a82b0c2506bb53

    Download Submit