Overview

overview

1

Static

static

1

436461ec2a...cs.pdf

windows7-x64

1

436461ec2a...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    10-05-2024 18:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    436461ec2a37aa6ff9f02ee60a296ce0_NeikiAnalytics.pdf

  • Size

    37KB

  • MD5

    436461ec2a37aa6ff9f02ee60a296ce0

  • SHA1

    3bbb73228a789aefc7c03c7cb8f6aeaaeb22a147

  • SHA256

    55452bf6cdc905a3c9e4ee96f32a67db1f3055a4d67772dc4128f4e4170325ab

  • SHA512

    857b0fa7dd981a89705492dc969b188b7e62d6b3cf5a90e84b906f63914679e6af2ff276863018f04d3bec95e6a5513ee63a6a7c0128cc7daa8d830e5f0b9cce

  • SSDEEP

    768:ScSqEltqBhiQcnkdTSpKXXS80a8D1HjVOO7NBvkkdgXxGseUF:SjfKr1tno1pP7NWkdKxgUF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\436461ec2a37aa6ff9f02ee60a296ce0_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2844

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    115e19b808c29bcf47c2464863fccf62

    SHA1

    6001a93cddd1452f348e9e55ab539c259a9498e6

    SHA256

    1380f9db65e9e0eaceea994187c08e8da66815f7ebfa91396e3b1420d98a821a

    SHA512

    d675b5fae4dfce23fa5a6f526a461335308ccae74cad5a3e870d855b911507becc75135c61230dd0ec93dd88e381e5f8af5a9ee3e15889b683f0ab93e82b1b1a

    Download Submit