Overview

overview

3

Static

static

3

611f959684...cs.pdf

windows7-x64

1

611f959684...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    23-05-2024 00:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    611f9596841d2036961f728b5d033920_NeikiAnalytics.pdf

  • Size

    419KB

  • MD5

    611f9596841d2036961f728b5d033920

  • SHA1

    822f47712416cbd1755272910c37f1673e1964f5

  • SHA256

    edf3dd5cde8f0740f1fe463dc5b40b782936e004ec42539eb01c3cbf454f2b5d

  • SHA512

    b8297b0616c53a00b0bf7ef4832543c171f0120b9fc72cd318ba4fcff72e873a99181bc21aafc7394f90e2a2b84f18a3da3fed0b92c5927eb526a08e28fc5cb6

  • SSDEEP

    6144:R2WoDJJqiqNiQ7uSCmWe8ulcBBwX9yhWOwagrcL31Ih/bDh1ROmrqMnnXLEG4Klf:sxqiqAQ7urebulpScO1ROmzIklY0s4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\611f9596841d2036961f728b5d033920_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2548

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8e34cef538f4d4cf5c19d4c258ab7012

    SHA1

    1ea028b2e02eaecd1d6477a518e84774baa83b64

    SHA256

    be8f168cd140636bd0fc28b84e66afc271f695485a461a7d3bff97f059aeed89

    SHA512

    f13f21bc59f8ad68e0a557c4662dd31a798aabb42162c8b87aea7d5e611b8c590cd687b78f9036facc0378bd9000b96ade9d19df165ed8a0610a31db0ecde4c6

    Download Submit