Overview

overview

3

Static

static

3

NEAS.f32b2...f0.pdf

windows7-x64

1

NEAS.f32b2...f0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20231025-en
  • resource tags

    arch:x64arch:x86image:win7-20231025-enlocale:en-usos:windows7-x64system
  • submitted
    11/11/2023, 19:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.f32b22b729377faa0ca57a4654e7d2f0.pdf

  • Size

    103KB

  • MD5

    f32b22b729377faa0ca57a4654e7d2f0

  • SHA1

    0e4dd699e2c7d0574ed31b2c8d6551812c11288f

  • SHA256

    081b6a5808619f21e2e87f276a0a5070532afd50464d8246a5e360e2587bc030

  • SHA512

    af26f144ec063ebdbf8a24709b2739935a58e6a2e488be45e53c5c0c615ae85d812fec9bb517f8c9831f7fc6ffa524dadef0ecaf87635b8c00b3065511cd022c

  • SSDEEP

    3072:PlhySN4JUTyvbvRrCX4ct9NGy4i1puJhp5kGCP0u1Wlx:NYW4J3vLoX4cxWi1puJhu1o

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.f32b22b729377faa0ca57a4654e7d2f0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1224

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    783e41f36a52c8e9dc072881464adc3f

    SHA1

    2f090859766baaf97060effe3f915aa4c97ca788

    SHA256

    ab4e20561864c4d326c34fc7799988dd481ec7608a49b5156dd20a1bc1d22f65

    SHA512

    66b43b449d83d6c85585f0871e7a81f936440137a76637414cc4625daefd59b897d419b17623697805be36923cffe56cfc9a39ff4b046fb46ad4aafa9a377c0f

    Download Submit