Overview

overview

3

Static

static

3

a34146c5d5...KI.pdf

windows7-x64

1

a34146c5d5...KI.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    08/05/2024, 23:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a34146c5d50db3ae3e939bbe917b7e50_NEIKI.pdf

  • Size

    43KB

  • MD5

    a34146c5d50db3ae3e939bbe917b7e50

  • SHA1

    1a4f1a6de3ebbc1e19ad203b871640d2e8cab2b5

  • SHA256

    dd71b2660f3d69bf5542247b65493d660f857438258794f429b59c2d4f543661

  • SHA512

    f99238e51388f7eee2142287cffd1f6bea7344c1519d483885818801a1985c0b430e0d0103efb7294c980def5ab173e17a8ded1c5cb6f34c4654e419dd62f555

  • SSDEEP

    768:Vztz1fC3zPzuPCOX74p14gh4dd54GuchtWgLo9XCw9APYMXTIE971uft9y6rl3wZ:8eIHyzhuFaJVW2SFYLpgA

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a34146c5d50db3ae3e939bbe917b7e50_NEIKI.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1560

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e23d9b735359bc90d2fb123c0fa7b076

    SHA1

    429b8aa5507f7a4817795e2aa76049156bdc90f5

    SHA256

    2ae86d28d0244a52b7b5378313445b61ae6fe05fa0ba7cf51b5ee15ff2abe0f7

    SHA512

    84a7f91c33918a15c884dd48b0a7a0fa3455d77c61f7846b7a566dd95e4d7b872d71de56d1da23d0b9488006191515e198f2a371725ec01f707961488ffde89a

    Download Submit