Overview

overview

3

Static

static

3

NEAS.e8467...JC.pdf

windows7-x64

1

NEAS.e8467...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    151s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    02-11-2023 21:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.e84678da995e06e16f584a95cb3dd7b0_JC.pdf

  • Size

    45KB

  • MD5

    e84678da995e06e16f584a95cb3dd7b0

  • SHA1

    9ee4cda40da6d9bcab7239469eaf50cc9f495c1f

  • SHA256

    3c5e6ed656a35f0756243ded0c30d332b2149107cc2c3fef22a83561b69f4319

  • SHA512

    bb0d54191ebfbcf1cdaf1b9ddbba60e017dc7a33ba38d65f13e6c46aa480a4f121d79f64d36287dae0790b2770585c3681dd0b420ccb6c48716b96d25371c54c

  • SSDEEP

    768:WzvfOFCCf51bxmHve8BwtrekA3H03VSVbf4uEUw5XcMD0+1uEFTB2w8eCgP:Wz3Hu/0el8B3H03V+Usw5XcMgYVCeCE

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.e84678da995e06e16f584a95cb3dd7b0_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2020

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    292049702c432ed33cac58bad1ed3d23

    SHA1

    489cc901cd97fee9077c1f54fc5621273a94ad91

    SHA256

    9cc476045738c57c59d8853d1d9f77d033c3785c72b3966b53fab5455c649797

    SHA512

    f383bb0c1d2a7a0a9a721bca53dd1ab7d1373957f998c154d3d1f8cab6017ce625a0ee2bed9a0a44f7a1210280b027c26cee9509705484c74ccda6f6f52d9c52

    Download Submit