Overview

overview

3

Static

static

3

NEAS.cc008...20.pdf

windows7-x64

1

NEAS.cc008...20.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    13/11/2023, 03:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.cc008ae0f54071ed7c897afc912b7520.pdf

  • Size

    31KB

  • MD5

    cc008ae0f54071ed7c897afc912b7520

  • SHA1

    dd7ca9f251e24a40c912004d6c39cf246b7f72dc

  • SHA256

    5b74b0be9df19c8c4616005c714ad1c989774fc4d03b9215e90edc6da5da3671

  • SHA512

    7477825e394497981bd2dcb8ea4e00c30e6907f6289e8aa2143ce8e4e6227a5b46f80a9e80e2e18a87fb8a26682f3d0ab7d5f62f3284b6bd24d95310a7b6ca8c

  • SSDEEP

    768:aAWgK/nd44yW+/+ULSs+s3K2lZGXtLQA884xCy:aRV9UaH8ItsA88kCy

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.cc008ae0f54071ed7c897afc912b7520.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2288

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    686e4c9a5f2bf89f0f305e49e62ecec5

    SHA1

    0b6b6a51bfce406d82bde8cc3a5a7668fba1a414

    SHA256

    67ceda05b93a78d6f140f6316a829ec2de40dd46d4a0800cbd5e26340e554343

    SHA512

    bebb651388ff82736dbdcd8cf75f814bcc64136ac202365722b47deb20af7c0ad182f9b0de963ef1c7982b0f579a52b7e863c52b200532b6868c3c71e9455106

    Download Submit