Overview

overview

3

Static

static

3

NEAS.00119...d0.pdf

windows7-x64

1

NEAS.00119...d0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231025-en
  • resource tags

    arch:x64arch:x86image:win7-20231025-enlocale:en-usos:windows7-x64system
  • submitted
    13-11-2023 04:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.001190cb7edd0317b5812f99543f7bd0.pdf

  • Size

    183KB

  • MD5

    001190cb7edd0317b5812f99543f7bd0

  • SHA1

    c17c35af6661df0a26664d3c52dea3611d94487b

  • SHA256

    48e4b3ac551c02f015bef19eedd3931d01bbd32fe286e699119f3a0ca554fe0f

  • SHA512

    a4c79e571a1a6e111e433f6b48f8e7e4ea4c0c93e47ad12dce7ccdabab110a4e69e71bad9b58edb56c602dbcdb6ca6c1a440aed3e70db4d1aeada3ef560fc68a

  • SSDEEP

    3072:P5y1DdkdslS55g2SFYLpU0rvY/56QEHfoMHWEKvfhq8ml3hGBQHsjubzjdUwnmoC:PGKilSYFYLpNYh6hfDHWEKvfhqf384s/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.001190cb7edd0317b5812f99543f7bd0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1740

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1bc3ba1278a9e6c6d5af7001c2132e69

    SHA1

    bd6c30d8bd007d8261f6447880ffe1a5fe9188f9

    SHA256

    9ca65d008f6ebb97f5c024ec287c156445ef9ec170e03723278c4570f8f16419

    SHA512

    7e74756059b8ab7803ba88c668fd9cdfbb0be4fc25d5bed8b7cf909320a50da942cb0ea1339489ca894481c29b8140ea33fe453994616bcace34262e53499a9c

    Download Submit