Overview

overview

3

Static

static

3

NEAS.d2954...40.pdf

windows7-x64

1

NEAS.d2954...40.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    239s
  • max time network
    35s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    07-11-2023 20:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.d2954ad9d2ae42e4edb3f70e67d20340.pdf

  • Size

    113KB

  • MD5

    d2954ad9d2ae42e4edb3f70e67d20340

  • SHA1

    5c132ad460814e10de61c9de9a48da7608067c25

  • SHA256

    822066115d6d0363c973c59b0ac4857a41c5be9d9513823a0df20483d393c5e1

  • SHA512

    f69d55a8c3e33830f3ab616d94c826e2c48566aceb0cad86864ae43f367ae9a78b749238dd0b403edc00d9036e20d934020b836a596c572016a609300df47481

  • SSDEEP

    1536:1ojos7i5pJT7SCgsq0/dteahjm0/jnaemCBmjz7hMJzHXjZmnfhWrjQYdodJhK:Yi56CLq0uahjnvBmH7mZjZmfOQ+oY

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.d2954ad9d2ae42e4edb3f70e67d20340.pdf"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2720

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f33864b17fd40e36d45f60b15dc6ac7e

    SHA1

    ac7f8ccb958a0d2e22c61130355256c471727eff

    SHA256

    edd907669807cede46124d5d6617f7563043b9380dd2fe3f15b88842b368776c

    SHA512

    3a01770d3b42fc68d505022f679a4f25d582785f69768271e7786c80f78564d795b80d844bdc1ec1b8741d120c1089fa5db67996756526be63ae8593eb3f27ca

    Download Submit