Overview

overview

3

Static

static

3

513a58daae...cs.pdf

windows7-x64

1

513a58daae...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 22:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    513a58daaeb5483812b922b31f5e5090_NeikiAnalytics.pdf

  • Size

    84KB

  • MD5

    513a58daaeb5483812b922b31f5e5090

  • SHA1

    d3d29e084b2ea26530b5a7ecfeffa13e7151681c

  • SHA256

    8a46254ebb6659c3505d0ef934dc47307d6cdde31112e7dade5be46a0a5073e0

  • SHA512

    4c07f353bd30362aa94814c3669aac524bf5c965b71c818b764fca6fb9a6a9e96867b62ea5b8f1c06455e88d65d2d82924e9df495d9c64a576338beefabb9b51

  • SSDEEP

    1536:bmNBp8nCLXcSCzGR+B6qrYzBWelQ0qbS8NZTSPTsBDo3d3TGlq30ppo4G9T9ei:YhpIs9lfowsRot3ylS0ppLGlx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\513a58daaeb5483812b922b31f5e5090_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2236

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    82e6b4c02232f040d05cfa48f0f2aaaa

    SHA1

    7a2f678ab54a0daa59c012c200dd6b557ac4eaa8

    SHA256

    6229d7b50090d6434797b3c077fda95db49f0ddaaf804ed7a99a2712bd0b9231

    SHA512

    6d11e64c87d2cca45fa028944faa2320238bc49b85a7f94eaa4d6d2f1be61bbe2184dcd31eb660f0b386d8d9ae37a0f5508fc7b732563762d2a044e42e4012f3

    Download Submit