Overview

overview

3

Static

static

3

ef792e151c...KI.pdf

windows7-x64

1

ef792e151c...KI.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    08-05-2024 06:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ef792e151cab9a2068457ea6583e2c90_NEIKI.pdf

  • Size

    458KB

  • MD5

    ef792e151cab9a2068457ea6583e2c90

  • SHA1

    594d7dbe0804ac44d2bd07d93bdee80256544ca4

  • SHA256

    39422f08785bddd11fbc0b2f2b78428d9aee3196a6e86182d76d12f2752b43ed

  • SHA512

    bf4148259c43e8fbf15755231b30e79eebfdd02d80d0ad0d663b619ebc609a6b517908d77c7f4c1fbe08fcdd6c92088d20e8a0a47f93973c252525e775b079f6

  • SSDEEP

    12288:RWdVIhdxUnjtVhHY5vo+Q0GJzzyfzphk73N1fGC3Lr:IVIhDUW51Q0azOap7r

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ef792e151cab9a2068457ea6583e2c90_NEIKI.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2088

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    17dc6f0128ecd82b2c4f4c2c4d91d965

    SHA1

    63202e7ec51e1c01aec01caf7beebb28f4ce1c27

    SHA256

    255daed00cbe08069b47e6213997e4bbe988b4184d2a80bd277e61c7e45d0c59

    SHA512

    77809a30b9c59915cf22ab21b94340ca2acddefa9345b5a53c198c8efbf43a59e5528d2b2d82b9ec9d943d2ff74e5fb8a61eceff4616f556b8d886e6d08240b0

    Download Submit