Overview

overview

3

Static

static

3

fe72b85d94...KI.pdf

windows7-x64

1

fe72b85d94...KI.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    09/05/2024, 05:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fe72b85d947354c5ba4457e3555b06b0_NEIKI.pdf

  • Size

    261KB

  • MD5

    fe72b85d947354c5ba4457e3555b06b0

  • SHA1

    8e88c6af8aec51e48fe04d7ab97a3dd7f02583fa

  • SHA256

    935b2d450afc9dc4cd7b5ce044a0b437861668a55b1cffc9d1be844b81549869

  • SHA512

    0e2e607dd751fd354c75fa8f19b7a63bd2259f9667d05c18f4d76759472df0743cbb202aadba6de3788fb741e24de80bbf39fe76610da4a84350ae9045631bce

  • SSDEEP

    6144:KhwQHU4T1EeOxzeigE8GV81HHjgYmxuc4dfZXq9LZ+DIPd:KI4TbwKinXVA0YGuc4Wd+DIPd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fe72b85d947354c5ba4457e3555b06b0_NEIKI.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1700

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f75933e2a66b535708f55b6518dc8c03

    SHA1

    29eb6909e3a8c8cfedd3e3221081d3e32ba4ae7f

    SHA256

    a20c2e153f9d7b8eb3a2480dcb4f7ffe836116fc2d2eead83e5ce1e9f5dbec29

    SHA512

    ac872f7ea540f820e75784c3d0666908eb6a0e29dedd0c8ba76f4a29944f86fe33529e42dae23d6a5f51ade31768efe3b75c8186c808c13162c73a20c31a0f9a

    Download Submit