Overview

overview

3

Static

static

3

NEAS.07be8...a0.pdf

windows7-x64

1

NEAS.07be8...a0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    167s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    03-11-2023 10:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.07be892b22926a1a48bf60f63754c6a0.pdf

  • Size

    114KB

  • MD5

    07be892b22926a1a48bf60f63754c6a0

  • SHA1

    6ec9457834f253bd804981ab5aa9776ef72eae59

  • SHA256

    a7a91ae162d5fe3443e352d98c8d05458c5ebf93e1fc6f8c9b344bf57f796750

  • SHA512

    edc02b61f566cb9d5e2db559fc4ec9cf97c84859c1c1514a634be3ca8ec6392aea73d8d7c58c85b68f5fec9cffc4cebd299c9f99db8bb631cf92979ee6f133cb

  • SSDEEP

    3072:K6gu5YdwVyUyHNcOQr2uWd/wnSOz1jZmfpQ+ol:Kxt6wUy6Fr2uk/Qafpnol

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.07be892b22926a1a48bf60f63754c6a0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3036

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6b337d4d9967beb137a575d400177014

    SHA1

    dc3f8b4c39d593d87a09978a9284516d61cbf91a

    SHA256

    0fc6cf1709a3508f653090db031d52c9894ec15ca0ab8b5d3fba473e15aee10f

    SHA512

    c6f7fddfe88c63cae6b332a14959b78fc201d214f74a2947399a01a9b98ca6adf413dc81fdc6f2572da4418acdb8c767ba874d2a3ce5afd3a29ff93d7cae38b3

    Download Submit