Overview

overview

3

Static

static

3

NEAS.c353d...JC.pdf

windows7-x64

1

NEAS.c353d...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    177s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    04-11-2023 19:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.c353d72f90eeb24f82adc3ddd0089340_JC.pdf

  • Size

    304KB

  • MD5

    c353d72f90eeb24f82adc3ddd0089340

  • SHA1

    342a23827d8555903f8ec797b2f6b2cae7581a57

  • SHA256

    94d027532db6052b93607fc78508466f95201b85d6d0e918cc25dbf7f1a8b200

  • SHA512

    08a69a312050848043e1e61d6a3a118733671cc8d500c8c0ae7027ceee7cb4d0902964b12bcb3a4cd24e6469443aac3b03a07afd5d19eea5e166e4c6b6d09d65

  • SSDEEP

    6144:iIx03zg7uhLKRCRk2IcfvvJHAzEsyXX+blrwF+E74ja3RM01:iI63zgifs4v1A3KX+bFBE74/01

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.c353d72f90eeb24f82adc3ddd0089340_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2352

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    18889b58bf3ce06cfab8a4ea886718a1

    SHA1

    75396e696b494076a65197a6558f615e77b6bbd1

    SHA256

    80150a1cf3382ff31b8bf5800e81e7c6ff6367bdb541c344dab530f8c500782e

    SHA512

    e6d8ab06b5c5266197e27ba419a117f729ae513b637554ce593d8f603dd35478fde7fc693ee3a8f28e0bd3381cd8088f97b9a40d5e43d71e2fbe5dde4d99e36d

    Download Submit