Overview

overview

3

Static

static

3

NEAS.17f25...90.pdf

windows7-x64

1

NEAS.17f25...90.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    14/11/2023, 14:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.17f25d9071732ce45a62fe71f8acb790.pdf

  • Size

    353KB

  • MD5

    17f25d9071732ce45a62fe71f8acb790

  • SHA1

    8bcce0db528817ae06406887d19dbcc857f2c3e6

  • SHA256

    a2bde775e1fcad93d219d9b196a69201006642ae9b102348810a794564d970fe

  • SHA512

    28cbf7bf94b2fd4719434a996ef5ac8e98f30b108d91c7f4c55fd5fa76671e248932d98d9a6efdfce68a5da9d3f99ff3505561288bba245f22998572dca4d78c

  • SSDEEP

    6144:VsqBfxD3QZnH9zZ91j4BXnyF2DSvcW7qCaXd2rE52v3PUW2sTOLZr:fBfxbQ5H5Zj4RiaXdT2fjqdr

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.17f25d9071732ce45a62fe71f8acb790.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2248

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5e03cf2543b6255148fa6df851b556e6

    SHA1

    a40c15912c12654460aa05359ec226396ec2fb50

    SHA256

    79d8875b664b816f46bb465a44d8a01168e6e58618098f970afcd08fde5fc892

    SHA512

    e73a4070bd8101b53fb745107aaf0bb22df140d9a57fba8193570328abc271cbd8e414975d302860b56c94ba9e4cf059c37effba10a9ffd12674c5801b6d1a9e

    Download Submit