Overview

overview

6

Static

static

6

d8a0a1f924...cs.pdf

windows7-x64

1

d8a0a1f924...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    15-05-2024 15:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d8a0a1f924a6c5f74e8a0c18f6f96e70_NeikiAnalytics.pdf

  • Size

    609KB

  • MD5

    d8a0a1f924a6c5f74e8a0c18f6f96e70

  • SHA1

    7fc321da067fc3296d4ff504435f4539cc98467f

  • SHA256

    68f0fcf23130beb1f16a725f4da2c383cbb08cdde2a971217d955bacfd8eb10a

  • SHA512

    67757ee06f0462f820b472b5d7929672e6b8ef6705afd0869204211e7f9eaf1da32f9afe477d95c8485c926c64aaba130f7830e8cae13af3e3703769ae755400

  • SSDEEP

    12288:8G8N/QFbs4rijFKP7BlODrACuCcNyTE2DV:sQ+4rfNDCuCBdV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d8a0a1f924a6c5f74e8a0c18f6f96e70_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1684

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f261aa6c14b88cd6384d7a000911105d

    SHA1

    86fd59bfa50fec0a4b83719d40b72c713f8ca76e

    SHA256

    3b1a054a6a703389a890e08c6be14a32faf46b3ad6c3543cbd555035e3c9136d

    SHA512

    b0544eb5faaa209ae3cd28d8b41a3eb547d2e05dd2fc23ed486bf64cc559295e2a62b984f537942102712912ac4fde98ded2fd08afaf56f6286c25f5f27e3a5e

    Download Submit