Overview

overview

3

Static

static

3

8424a99ff0...KI.pdf

windows7-x64

1

8424a99ff0...KI.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    08-05-2024 22:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8424a99ff0e8dc03765fe931f7f26b00_NEIKI.pdf

  • Size

    162KB

  • MD5

    8424a99ff0e8dc03765fe931f7f26b00

  • SHA1

    f5891a8c682952405ebb30ad8ef650e1374cf2eb

  • SHA256

    7c1adb8f5f90cf4e67d28927fc61261cafad68005dd51033d6d047922933af3f

  • SHA512

    9d4c141045ee877a1a4565ca23cd37f4ddfe047c8566fa011d9f3dd5a54695fcc57a71599ee02a78e3e021dae31b394266e0e93306c436701b42b3036c7b838b

  • SSDEEP

    3072:sYTPErGfgpOd68o4BJH+kCSPrYg+Yl1KycWBcD3EoFTqatCvmA0ZlwURY:9PEyfgpOd68ySPz+YlgaBkhqoCvmfZWN

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8424a99ff0e8dc03765fe931f7f26b00_NEIKI.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2140

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7fb448a84fb8b36098c8d6ee08e0ac65

    SHA1

    ae46b14b95db353701b57aa406f68e8cc1e4fbee

    SHA256

    f1e4451383994b4918fff834d037bbf5185f07f656a213db1e0eea99d67c3f82

    SHA512

    79b921727248350f1bb3ac556f6785f5f7123ac0eebe96da65fa28c437826c1433fc9607a4bb869b3f5f648eab4145330dd4c42418aeaabdf18c967fbfe9d977

    Download Submit