Overview

overview

3

Static

static

3

7ba9cc1691...KI.pdf

windows7-x64

1

7ba9cc1691...KI.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    08-05-2024 22:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7ba9cc1691a188392b452a9a89b91460_NEIKI.pdf

  • Size

    51KB

  • MD5

    7ba9cc1691a188392b452a9a89b91460

  • SHA1

    f1777f9be718c4bdf0614318a4ab9529a8d961cb

  • SHA256

    f843afec0d6e05b557dad3fd511c811494b1241b30bad1132a4eeb6f86b2b5bc

  • SHA512

    236003a80b78288f281209941c2c4fc204e6873a412f5f3c651e1f15cec9590c693364e0dd05678ec09a07725797a75f530cb6e454a1e09f055e5fde38623a0a

  • SSDEEP

    1536:PMZ4pixaZFWLUIcLBq3EQbgkFp01hqDya85pz:UZ4pIaZF2/ctcESdI4ytP

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\7ba9cc1691a188392b452a9a89b91460_NEIKI.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2512

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    053379fa826e0f747201bbb63e887f37

    SHA1

    8dc5ad742e1f93643d99544797181a53ed88d0cf

    SHA256

    4f3a7273aa329981011ebe748df845e4fb57f12fcb184ffa5f246128c262339f

    SHA512

    a49a89ba688ab65c5e054ec005bdaad29a2df38365e2d1853673e96784b634a9ae190c536bf6fffccc73f84736397c5d02f707e91fa10125ef3f5d58fe04bd8b

    Download Submit