Overview

overview

3

Static

static

3

2494654b19...cs.pdf

windows7-x64

1

2494654b19...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    12-05-2024 15:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2494654b19836b0e2ad777f7b7f82170_NeikiAnalytics.pdf

  • Size

    80KB

  • MD5

    2494654b19836b0e2ad777f7b7f82170

  • SHA1

    71180f68ed7a5eef33cea5e6b747664421f3c6d1

  • SHA256

    47b19af30cab1ded95a935732fb87e4f861c59296940e12e82f059193aa8cb84

  • SHA512

    66727fef41228c05801bd445a3e3dcd4e92ca27249c4f94286fccdf095ec7c0e266f561c7b18a1b392f0f6342e92c2972ef5a67b9066768fd0efeb52e32926e2

  • SSDEEP

    1536:zXq9gi4TVDc2aMJqbBaWml5rpylqrB0iewKmntSD+Pxxtk293BPurMbldO:7oN4Ta2aMJOBaWml5rpys0izrtkaxx+r

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2494654b19836b0e2ad777f7b7f82170_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:616

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1c3056fe13102380e7640537c0bdd680

    SHA1

    ddc294c4c9e55c44ad980eae6d4a177eabecb059

    SHA256

    0f3e22cd361c448bd275875d4712e27a171f7126e633fcc17d964903d759d191

    SHA512

    3799de7149bfdc9a1e97015ee5ac21c3518935436096191189ea0755eccac3bb5e3f0470d5aab060fdf6ae8a27289455ffd72939a9c0ad74286f21701481ec73

    Download Submit