Overview

overview

3

Static

static

3

2a05e0a873...KI.pdf

windows7-x64

1

2a05e0a873...KI.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    08-05-2024 19:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2a05e0a873c46b936e621ea77a212340_NEIKI.pdf

  • Size

    42KB

  • MD5

    2a05e0a873c46b936e621ea77a212340

  • SHA1

    90c4a6e06c6f723590648646dad92f1ca345be62

  • SHA256

    f84d842a93fbc0ed51f53bc043f05b98c3b03f96e2551efdaeb78fc5c3eb53e2

  • SHA512

    949cae57e98cca6b03ea1ac17617571397b07238bc65e7052b3a5ca9080e5c69092ab47602e5ca1accaca20da91a7febd24f8f06698b5fc25a2c38ef9dceb930

  • SSDEEP

    768:d+s/GNAggtEHZgSS45plbjrlE5CwIUffAEYHPDyk7TYNRO+bndUWGuynHX8iY2a/:gNAgiEHZm4DQ5/IUffGXE9Fa1ipzlYFo

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2a05e0a873c46b936e621ea77a212340_NEIKI.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:912

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    313e6e8a3f2f8927debaf48f2627e8f4

    SHA1

    567721a27c493c89d977a93640f33796539bb769

    SHA256

    82f059d67fbda9338a265042c3481e21da532373772d5cd83bdbd7032a2b3f0b

    SHA512

    9b52cafac6d2c8525bf174a191ffdd7578a53640860d5c05b0cd2ea5c97d261cf06748f5f945446eed90a7c5ccd3f42f322ca20fdb0a28370b2adb538fcf1f28

    Download Submit