Overview

overview

3

Static

static

3

NEAS.a934c...40.pdf

windows7-x64

1

NEAS.a934c...40.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    13/11/2023, 06:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.a934c1d123bf6eff4d8c999439992240.pdf

  • Size

    2KB

  • MD5

    a934c1d123bf6eff4d8c999439992240

  • SHA1

    c7db94cf257b8f28f67700e5f28b3a779086a1af

  • SHA256

    f2e3d1d2ddd1c3eeae71d4251e28fcb6c28545673ac38d0262b9bf285652e052

  • SHA512

    bdcfa78d37df058fce72e259ee662ee8d826f0f7e82026e21ca3e0467a833646c0393212e68fe8ac6169dcec50f748f82458c0e19e82450ed6916b54a1f9e50a

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.a934c1d123bf6eff4d8c999439992240.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:292

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    19402527b97c0fd14d4acde69b1f7d0b

    SHA1

    107bddff14bb22f536a4f1d4d78b8f54e9cbf816

    SHA256

    c125bfbb2a817ab3689e0fba1eef4807352305e183200a9062f2460028812d8c

    SHA512

    c637fb6f1d3675eb223f58cb6bac55281aab1f4de75480efff2a87315522bf9e6b6a0a3e1e57ad9f9e9253c1d239ed9849200c651a236fc33cb7be15315867fb

    Download Submit