Overview

overview

1

Static

static

1

dd28f7e8cc...cs.pdf

windows7-x64

1

dd28f7e8cc...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    20-05-2024 08:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dd28f7e8cc83181c00e4f6dc68f82940_NeikiAnalytics.pdf

  • Size

    5KB

  • MD5

    dd28f7e8cc83181c00e4f6dc68f82940

  • SHA1

    631055ede74a075e91dbe8a14e6c32d2387904d8

  • SHA256

    c14a86b8c6e657664fa014da70efa4e70acb4d4e89f809f8c49e86c4653fa64d

  • SHA512

    740c806dc2bfba452a6aba8ad0275dbd3dbab57f74a178491c48c79f2cffbb533100293a8e165e22c8ac9ae41565ee0802d92fa09d33c0a19707da61cd527666

  • SSDEEP

    96:DLvyWDtvYQtHfxKc7OnseTDLfZJDX3+OTJFXkXcTrcTmbkiToTnN/MT:/XBYCp0nsAXXn+Yw/TwkPTyT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\dd28f7e8cc83181c00e4f6dc68f82940_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2140

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    604bcf98994bbaa8a4a43767b7c5a8cf

    SHA1

    2a19af5ce704527af078ca9352230471565fb3de

    SHA256

    758cefe4f29fdc710fe80d4d04c67149896e40f9626432fb7892501e03649f5d

    SHA512

    dd55acd9c20a06fe4f87018dcaa3b1e42cc71c52c43a847e2a56a300498cd802b219167751f20d643ab8e06c02295fc306944d707d4ac579420239c9494b7f03

    Download Submit