Overview

overview

1

Static

static

1

2dee9c72a3...cs.pdf

windows7-x64

1

2dee9c72a3...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    11-05-2024 19:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2dee9c72a320469c5d1d2090ae3dda20_NeikiAnalytics.pdf

  • Size

    9.6MB

  • MD5

    2dee9c72a320469c5d1d2090ae3dda20

  • SHA1

    9ca532f7b369f7bf1b7d6716b2cbab3ad379617e

  • SHA256

    ed12fdab3b338795a957b268482e63516821ffeae30d5a29efd2326262d65e0b

  • SHA512

    43f3dc6b12125ef7188cc135731654142a4ba91967321748c2d2ecf6f5dd0fa0273b0a9b602535c5992f446477819d43ed3726248fc9d471f901b9d035e9ea9f

  • SSDEEP

    196608:ttl02P0LLnspz5TA0Qp1ElVBxKMuuEeWBKAB2L04QTA168wTJRFL:102PIsFC0QfElNQuukwU04Qd5DJ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2dee9c72a320469c5d1d2090ae3dda20_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2024

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c58dc7112732e93352abacfc63f8f00e

    SHA1

    129e50add5ae399ff10bcc21441b95f9bce1a75e

    SHA256

    0ab80a2e5f705a6be56729abe6fa1cb640caefaf047e002b7a07bc44e6b0d20b

    SHA512

    5f12f255445ec58f31122e74811ecc98e824dff3b67f319bcbe202a76bf8f0bc777656ad94e38fc099f1172a3949475c8156f927d1d886af621391e811b0f2bd

    Download Submit