Overview

overview

1

Static

static

1

NEAS.3bb60...JC.pdf

windows7-x64

1

NEAS.3bb60...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    152s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231025-en
  • resource tags

    arch:x64arch:x86image:win7-20231025-enlocale:en-usos:windows7-x64system
  • submitted
    04-11-2023 08:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.3bb605a537463a89a8e091e42ae86b70_JC.pdf

  • Size

    90KB

  • MD5

    3bb605a537463a89a8e091e42ae86b70

  • SHA1

    b51d209b75cb1972ae86d32f2bb8c5350f9ca5ae

  • SHA256

    9cefbd6b7e85c3154be62dd81bbd92ba65099d3f23a26cc844948334dda3b259

  • SHA512

    ea630934b0e8712341bc33cb0c8b1dccc4af57663250064d7aac7c7f238d075d644539246cf2921e09e4fd8d6471b14ee639f4b357612fe740f6b17679c21c77

  • SSDEEP

    1536:x9aR+kfTXRkWqOzBniWbO8JhIFppOh6iDGniXw9oQTyD3VSGA1THlfeLLqd:xeHXZbzkWbOLpp26liXfQsS71TFfeqd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.3bb605a537463a89a8e091e42ae86b70_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3064

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4ad4362c1a0957e5ba80af654da5a4b7

    SHA1

    e842165a127b2987e9fa2425913d24b17ef82ab2

    SHA256

    afcca216fd113508e26f9072651910a0d93f4d1cf3121d2190870ebb666a6dbe

    SHA512

    4cec56d4685378161a2625bd9ee7e66231d601e5d567d6adf7540de5318efc8f4f4fa6701d67f38a4c3f131b16daf7a1488b651e33761f7a2bc299bdaeff578b

    Download Submit