Overview

overview

3

Static

static

3

5b3ff2390f...cs.pdf

windows7-x64

1

5b3ff2390f...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11/05/2024, 02:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5b3ff2390f165d5b3899910ed3841810_NeikiAnalytics.pdf

  • Size

    301KB

  • MD5

    5b3ff2390f165d5b3899910ed3841810

  • SHA1

    0e749566a4c098d637aac4cf15f4db0a67cf2012

  • SHA256

    b78f5b1af0487665983b15a2e31b79278d27761d2da3c8f5a374168f28472e6d

  • SHA512

    b1c800ae8713ccc4d2a075de2a7f75ae7d837efdf97a357a3feedb84646b801ba2e85567ea7dee666b73b31dce60f19ca5aa39480dec80751959685a1a45d2c0

  • SSDEEP

    6144:OcCnu6lVREMH86DlA61LiDEewNXuvpnSUmBTiiDlqa2Sea3c/Rvl0uWt/fg:zwu6rRvBh593ewUv3mBT/qabtYbWt/fg

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5b3ff2390f165d5b3899910ed3841810_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2676

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8c2431ab9d961130b9a280249dcf2e94

    SHA1

    9f667a52f3ea81c9d5ee3845f9d1f1e5f0c93304

    SHA256

    f7dad64e5e497ef4861ce8605f1582b9f5e8eca5cc57ff0781221fe1098057b7

    SHA512

    abbee6ec4b227d75f188c070657c1bf53df809ad2673954f12e2661ef69c0310cdccdd3c2f28c814c97bc98c2ad9111c4c12ee3dacdea66b7be4bb017184b58f

    Download Submit