Overview

overview

1

Static

static

1

a5ec11a41b...cs.pdf

windows7-x64

1

a5ec11a41b...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14/05/2024, 07:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a5ec11a41b1a6cf7d9d187712a08df80_NeikiAnalytics.pdf

  • Size

    122KB

  • MD5

    a5ec11a41b1a6cf7d9d187712a08df80

  • SHA1

    2fced3c9b9e60c0ca1ef21b5ae472d2a0810fd98

  • SHA256

    3f59ec5181db595bd5bdc92752390e7dd78c8c850b36ca3c2f1af1503120fbcc

  • SHA512

    4f40de2a100da632317549d8be645f0026648a5fa2ebede881a813e484b965fc8356cb0bf9c2eeb47116c3918210e7cda1707417e04cc88ac920c1dd068b047b

  • SSDEEP

    1536:VbtPru95x/cZRQ1tXj7JRKUAicGJnXBzdUaD2f764YRBX6h2uJexfUW0S:ju9iRQ1tvLTFdUa6fW4Yv6RkxfUk

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a5ec11a41b1a6cf7d9d187712a08df80_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:856

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    682656e2cbb7193893917b4826f44a48

    SHA1

    b0ffc3e2a4a0afa389c891486bdba2301c7c3c2b

    SHA256

    ff547b79e10d4d96ab9a5c7dae1d799df62d9f07df64a818e7557869ab273674

    SHA512

    846b4ebd24992406c9ed7838a510e2e5a214dc3623485fbc45dcb78dc7c5eb77db1bd9196c9faa1893b86295f755294a0f8bb98b5a05763cef0081e154220a5d

    Download Submit