Overview

overview

3

Static

static

3

cf750d0618...cs.pdf

windows7-x64

1

cf750d0618...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    15/05/2024, 11:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cf750d06180f60b502957b68e6a3e580_NeikiAnalytics.pdf

  • Size

    301KB

  • MD5

    cf750d06180f60b502957b68e6a3e580

  • SHA1

    92806a4bc21c92d946d80d33ad5c5cce6a48e890

  • SHA256

    9825bf4b890a5808fb2f9aa7ca8b40e58c8c1f8be880124362f712289fcfdf68

  • SHA512

    115f794bcf3cf619e8f614c1c8f5c806fa38e5f05d5ada50b6201b3b0b39d8e6052e892cde089a2a14f0928f80c484aca7ba75952e662e9ed1b9070e23db24ae

  • SSDEEP

    6144:ZLMDaemOtLAtuPKixiwbj+Mgl3uBs4s0a9CiAcCH0R4SbrYK5P8Ky:ZpjOaMSBw0kWGa9pBsobrY8U9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\cf750d06180f60b502957b68e6a3e580_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2084

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    110c3e636fb37dd21cea099d262fd92a

    SHA1

    e41f0e8a702a43858519ba55384d192a1f474a56

    SHA256

    7341770ec59dbee310d81da17a84ee25d65b3d92736637e8488ebe8c3f03bd23

    SHA512

    f77c19cd388bacd1e11b8c0822bf776ba93d8d20ada88c22587529d438f9905e42bc01177a22a22184b65497fde6b22f4122971cd309d3778586c0bf68f58a93

    Download Submit