Overview

overview

1

Static

static

1

3ef3ee4e03...KI.pdf

windows7-x64

1

3ef3ee4e03...KI.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07-05-2024 21:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3ef3ee4e03f6f1c2a28f225d42372d40_NEIKI.pdf

  • Size

    20KB

  • MD5

    3ef3ee4e03f6f1c2a28f225d42372d40

  • SHA1

    0e4f41788f0a13f87065bf3feef5a2063b297292

  • SHA256

    7a9a33271563b1337fd28f940b798316523d62afdd23f02166d34eb14c6f4729

  • SHA512

    5b6e222829910adaeeeb16d248db2ce99b0b0c7c3c1141229cc83e531d77564a2a4fa29d04d2ac4450a57dfe9eff5b3ce53e4934ee2a521ce0964863695a3ba2

  • SSDEEP

    384:2Z4KR7heIN8A8oJj7WBaXwAUy975KupUN6MuaagWrMLH/LxLFLLcJTXFX54YHPOd:KFJOAjlWBlAr9hehadMFBncJ7H4Yv0

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3ef3ee4e03f6f1c2a28f225d42372d40_NEIKI.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1524

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0dde66c702759a3acc755a5583a6ca75

    SHA1

    38de0fce9224d3909569aa5ea2a1a5ba92b34a7f

    SHA256

    86be1b6a3bc6531ed9fb64459f77c23ae8469e7a3896651ea76f177eebd038ca

    SHA512

    8e9758128181b71bf4bdcfbe24c67e9f99fecb3b862d7df1448ea0b8d264e3b03a94406fef3f5b72f4875b7dedc2abae7a6d342555d5e394339abf44d14fd6f7

    Download Submit