Overview

overview

1

Static

static

1

3773f2551b...KI.pdf

windows7-x64

1

3773f2551b...KI.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    08/05/2024, 20:13

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    3773f2551b8c987678f7457b57c194f0_NEIKI.pdf

  • Size

    255KB

  • MD5

    3773f2551b8c987678f7457b57c194f0

  • SHA1

    ebb8bfe8ef55360455bd0caea8cd65caa76c8f1b

  • SHA256

    a0fc4ecbafb54e785c56b9cde790eb601dd42c1203c379948e6babe9c504aa1a

  • SHA512

    e6a089d4c213ad790642bfdb70b183b79fa736e11b7478ae698533af1829618700bac800773b98376b0654d2cc9b95c2e28e7189b597c1782448640e01c05397

  • SSDEEP

    6144:AeWY61ZUQ1CokaTG2GFn1i6CYZlYPDDzpObRm5R:AeWYa91Vk2CR3YPVJR

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3773f2551b8c987678f7457b57c194f0_NEIKI.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2120

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          28ef5632e949fc361777658c8915a458

          SHA1

          aecd3cd3a54a489b45c2bd45216247e13b44d697

          SHA256

          5b95e4c9e2c47bb3780b52a628146e13f94b84886d4ce219e958713f7a7f62ce

          SHA512

          129a8d9e38c246e2f8507d9d5b040757493ea4118853c65e7210d4dc9f546d046dc9bee5ba615512946d6e3a5c413e472aff29ed80fab164accf0e0e67898956

          Download Submit