Overview

overview

5

Static

static

5

7cf56007ef...KI.pdf

windows7-x64

1

7cf56007ef...KI.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    08/05/2024, 22:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7cf56007ef9c89ade5fa42636d5b0ce0_NEIKI.pdf

  • Size

    56KB

  • MD5

    7cf56007ef9c89ade5fa42636d5b0ce0

  • SHA1

    9bbc78a7a1194c6b58dca2c5d632d26714482774

  • SHA256

    c9c793878817c95109335875fada1a35d43ee2e21edaa683c487d505a38141ad

  • SHA512

    5b7f717d8fa2dc274b9f3e6ef941c4ad69c16994b8362658ba7858a0fa032bbd191ebae45ba56b961468c98261e598adde9f09f6eeda95b4438c87536886de14

  • SSDEEP

    768:VF5Vz7oMqpMUoR+by2kJNzas9Suft9y6rl3wJPJsyqW4XSjjFYLpRr8Fy6h4nztM:BVzdUbuFaJd52SFYLpgQbPCr5mZopSW

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\7cf56007ef9c89ade5fa42636d5b0ce0_NEIKI.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2820

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0bfd57db4b9dae925b2af7177795f174

    SHA1

    5352e448479f7350847bf5960828dcaa99ebc8e1

    SHA256

    fc94eb1098ab12277ab7f272254a5dee86f5848649a0a7f6e99dc090da6ada9e

    SHA512

    b0a6d8873e5235b0e7abd49382be347dea29ea6fb4b0c6df719698d6d3ffb61651ecf956762bae932d7cbe91dc5f1d9ed9ef80db494c33b012a5f4b524b83e0c

    Download Submit