Overview

overview

6

Static

static

6

a261e29490...cs.pdf

windows7-x64

1

a261e29490...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    11-05-2024 07:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a261e294902e202dd174794f43bc92d0_NeikiAnalytics.pdf

  • Size

    384KB

  • MD5

    a261e294902e202dd174794f43bc92d0

  • SHA1

    1983b47a7351f2271ca07f2771c3071c352c4106

  • SHA256

    b67e426b2bbbba08c51f8d4243587c4e6124559b5a7275b3976b8378ebb469c6

  • SHA512

    025c428e2bd0783e6d9ff45693ae4898e33a2f4145ffa79121a5a1b4f571f7d453c6152fc3dc5d6902fd03a7a238e0897970b3df76d61266b374b3412d49559c

  • SSDEEP

    12288:U0WxuJH2fKvVwzIjuuhM/TJwbgP6sY8zGL78P34XVT:Wxuc6Kg3hfbMXzG38P34XV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a261e294902e202dd174794f43bc92d0_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1852

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0128ae647e7dc94287042a6f860be8da

    SHA1

    2f4837b2110f9954f8c0d5c37e85713649bc9d99

    SHA256

    f11baa4d8f9fd5916a054e8d0cd2e8ea59041d3a83da680e8e08c93ff81319cb

    SHA512

    e5722a3569fce11341a74015a9fd2a41eb61f1f478285bdfd0ffc5c67c53656ce074c967d8aa114e8ca1113ca5df03345b124b708b93e4c1fec4b98e6f9b7363

    Download Submit