Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16-05-2024 09:01

General

  • Target

    cf6a05ea3070ad371cfd7f23a75c5830_NeikiAnalytics.pdf

  • Size

    573KB

  • MD5

    cf6a05ea3070ad371cfd7f23a75c5830

  • SHA1

    344372250e88f9dde899f713c7cf41e6f33fad6c

  • SHA256

    ead57bf23da1cb9259c7511bf194111165af8d8bc5929ddd0ad9a67d094add12

  • SHA512

    1127b6be18d843346723ba6b5039b5e04d322031fc36d61de75c3281552f02d8afd69a1419fafa3a2a8caabbe510bc03726137eec38d72cedd95961edcc98520

  • SSDEEP

    12288:eFRhOujHoFaEURULym3Ct88kuG7A1stJgqubUOequxn87fSKZH5:eguTodURULymieL7A+u4qei5

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\cf6a05ea3070ad371cfd7f23a75c5830_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1368

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    7a6159c18e2f560862e1d3e976519652

    SHA1

    0662da1044416a963dd3fde570f137c620c37bbd

    SHA256

    a01351f96d2a7c7d840e68096f6f2b1d69bd5336c07bb4f5dadd3e9cb3c2cf10

    SHA512

    f91c833af059ddf44eadf582ad502f54953025b815290a1a19765cdac7fd59ef1f976c0202b35c60df461c12abe4f03e222bae299c8cd90599b3342e483316c9