Overview

overview

3

Static

static

3

NEAS.70848...b0.pdf

windows7-x64

1

NEAS.70848...b0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    161s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    04-11-2023 11:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.7084834b67d369dfc75550095df56db0.pdf

  • Size

    66KB

  • MD5

    7084834b67d369dfc75550095df56db0

  • SHA1

    810efb966dba4ba8e2395704c72209ac161ff1f0

  • SHA256

    f5e5cd326c2a535b1dd8cb0742c4daa418f4943c20927cf28a7bc9f91af665d1

  • SHA512

    492765c5e385107ef33f918263e70c2ec5b63128784cd5685f5fd92938e64ba7becbc8215ae3b4ae1caf9ce32d1dbc694265b6dcdf935386c50d0815d0a739e5

  • SSDEEP

    1536:GF0p48Fu8p3EuJZdwUpYL3y4RICtPWGtbYDHWHQsppWxA:lGKuO3JP4RICPSQpD

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.7084834b67d369dfc75550095df56db0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2044

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    46e65817e0f1e498e9bfb054d0f9433a

    SHA1

    014026a5777a62bb35f554d71b75af8d06727537

    SHA256

    6f86af6b62a9cc8de818391bf97506c799db49c01de5a3de7ddd375c8f662ba2

    SHA512

    714dd117dc13c4e1c9abaca5b6b8698a7634fb40809a9ec951d2e4236b5182cb504b367af25220a611966d583558e6de88f7916542edf955f86c061ec996400e

    Download Submit