Overview

overview

3

Static

static

3

5c21043e23...cs.pdf

windows7-x64

1

5c21043e23...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 23:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5c21043e233fa5da37ddbb8d5dc22260_NeikiAnalytics.pdf

  • Size

    353KB

  • MD5

    5c21043e233fa5da37ddbb8d5dc22260

  • SHA1

    8769773bd4ea9aa7ebac5b678e2a034d53ae894b

  • SHA256

    62dc3fbadcdec793348a3812d925ca1872c62f98cce0baa1fd7bf9ac8b2b7187

  • SHA512

    35a4ad20463ec052f33150e1cc71d4866a084689247df692f0c04a1414883eb2255931686c0917340dfceeb98ece2fe833f6b792d7277b4a9ff6497b4704d56a

  • SSDEEP

    6144:Nvqp1L2mtsEsG7REA8EKV3plDYnXYw5pPw1G9jfcLf/2NoyeHZH24Jg5z:JqrLttsL8RE3Vn1YIw5pPOG9jk7/UYHu

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5c21043e233fa5da37ddbb8d5dc22260_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1964

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a49697bfc98c7b9702534920f1002796

    SHA1

    3b8befada6873aeb018805e985a7d4cb548645a5

    SHA256

    164edcd7cea6d6d2c944f97c0b3a10005490133f367223be41876a9fb4227046

    SHA512

    24c05c242716fb0766d3aae3cacca9d1d270d153be983dc1f77be5a419f3801a1c2550f204e839791752ad1e3f7f3f503a0ff4180768e5149f65e4d13daf2663

    Download Submit