Overview

overview

3

Static

static

3

NEAS.1d2e7...d0.pdf

windows7-x64

1

NEAS.1d2e7...d0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    12/11/2023, 13:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.1d2e78a85c86d682e4be1b2c976277d0.pdf

  • Size

    148KB

  • MD5

    1d2e78a85c86d682e4be1b2c976277d0

  • SHA1

    18c9b17bb4ad5c7aa77ae9132ff34ad87a30d505

  • SHA256

    727dbcaafe3b8f864f47aab3320a8d80b4e6c436a161bb9fe023efc3fd360f49

  • SHA512

    34b31114fa2498208fe90576252dafa230d3ecbde30e1df5daecea884f3cd1ebda228b0409e3699a02c1ecc1a24880097ffdab418854c60648ef9c6ef00527d3

  • SSDEEP

    3072:p+6i56CLq0VahjnvBmH7m7yjZmfuQ+o3NEtJNYwWOIH:PXeKjnvB+mLfuno9E+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.1d2e78a85c86d682e4be1b2c976277d0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2360

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d408d889d66028b6ad4d6821a53f43db

    SHA1

    7da9ddcacb52933aec5a6c3e07c9d26f3b2e9a44

    SHA256

    27a840aa7bd5fe353b5b170360a8b5798ac4cf542118d7384e1562c320bf454f

    SHA512

    48b8cb67459354fda75c9e11227cd683e8e0591a54ff2d4ec1fbebe8c7782db12dac5934590dd426b190933b8c6996b35c14be1293fd70b2ca959dda56b114e8

    Download Submit