Overview

overview

3

Static

static

3

dd4f817ac4...cs.pdf

windows7-x64

1

dd4f817ac4...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16-05-2024 11:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dd4f817ac42bb3aa0a153376679e5d50_NeikiAnalytics.pdf

  • Size

    81KB

  • MD5

    dd4f817ac42bb3aa0a153376679e5d50

  • SHA1

    419828bbf7d772cf710bedad30a691bfd522f239

  • SHA256

    3f693b526d20fc628449e4973092e9246e54ef1c5d6a19c9823c0bbec7419de1

  • SHA512

    cb9a33905a0ba38079bec441cb1d6f1146413735ea153ea70adc48b6700ba1d27a72e2104ef7bd412000d798e059905d24da0dbe2fa3b2cada847ce5b52d8014

  • SSDEEP

    1536:EU0RGI+JYkN/Xvr7JgMl1uo4yIPcZY3/SkEEiaBCbZQX/egiEjmPkwiOap/rEe88:J04IC/Xjuo4v0SvviaBCVSpjmPkwiOa3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\dd4f817ac42bb3aa0a153376679e5d50_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2100

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f00eb504635f9aa463bbd51a5035ae0e

    SHA1

    a873641b79192b6538fc48fd1174547987965b40

    SHA256

    a731f762581a130870905bdcf7022e720a2bf6f5d4f0e2730e4a0bf5604b45b1

    SHA512

    41effb5a437456cdcc01eca189d398b10a67baaa2d2f10864716b6578705e2ad65976f79cb32155856cd6de5d41891e5745ad8a4caa029e1c5347b8314eac84d

    Download Submit