Overview

overview

3

Static

static

3

NEAS.26e0b...90.pdf

windows7-x64

1

NEAS.26e0b...90.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    193s
  • max time network
    25s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    12/11/2023, 09:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.26e0b4e33f0ace3c0b3574fc00e42f90.pdf

  • Size

    57KB

  • MD5

    26e0b4e33f0ace3c0b3574fc00e42f90

  • SHA1

    27d58b38772f966a94cf3985b2443b247567c1c3

  • SHA256

    c70fcc4432b590efe959cddd99fcd95c1907e11ea2ab32f4f237925d361d26aa

  • SHA512

    efa50238fa0e58348f1bf1a83ae36f6e4c9a3ce40219f37d7669fa81d750bfaa565aef5d1220ff76c1d9474193090ec85baca6d7caffdb6924756b7561a93e84

  • SSDEEP

    768:tDsipWgGzpDp7uDtT5F1IoEV6904o7ZAy17gYTRM+En4UfGcZFAYjX6T95kg3HOP:lGFITdEV69TlnyFueu2RU5JUfdQ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.26e0b4e33f0ace3c0b3574fc00e42f90.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2768

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    94384e8437fc6b9ca359d098c857dd8d

    SHA1

    e7036f95d30d614b4d16bcc00bffb576a6145461

    SHA256

    58f7ace6c42ce6277f609ca3e33a4817f9b3e97eb9a9a288a9c9359cb57480d2

    SHA512

    3379bd669fee3a15f9de95817e1224ef7545b3e10f189d25f394e493be3eda955798b07c1550ac021f3873dbeb2a2bffbfe3a4b6d00704ca13f3d792a5bef638

    Download Submit