Overview

overview

6

Static

static

6

22db047bd3...cs.pdf

windows7-x64

1

22db047bd3...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11/05/2024, 17:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    22db047bd321a149e330a99c9b092590_NeikiAnalytics.pdf

  • Size

    538KB

  • MD5

    22db047bd321a149e330a99c9b092590

  • SHA1

    0524c1eab0d099ade6156c562fe2c729558c4d7d

  • SHA256

    1c1b529eb8a0dfae3e599e15769570239ba3d239bbc8ac756cea7f1915e462bb

  • SHA512

    c7dc58c5af66e0609a13adfea669a287d594078530779572c384d6e4279bf9fd1f908ff203e2b102816a9cc19e2b5b95f64fc7dec803947e347f91867058290a

  • SSDEEP

    12288:oeXBm9ZIQmbqt0HPJLUlSclOHlNP8bcDO2ablhciksPV/wlZX0WRol:oTpVt0HPKWH7PzDahciksPV/wz0m2

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\22db047bd321a149e330a99c9b092590_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2288

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ddcfc01b6644baae8df3476c104dd336

    SHA1

    c2ca6f6572926e7f94da3abd59ca3d8e5fd4971f

    SHA256

    a029ab3d72760e85692a6a1f39007073bae7aee9b66e5bcad35b9cf6ca71611b

    SHA512

    a255f377d5430b48de363fb426ed054a72ffd0e27e4e563ba4e5c7275e436959a6ea89d02ad95c5a2e5b3d0b9621e64a454f648cc4fcc003586d9635ed91d45b

    Download Submit