Overview

overview

3

Static

static

3

132be581f0...cs.pdf

windows7-x64

1

132be581f0...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    10/06/2024, 12:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    132be581f0eb4eedb8a189b8144de7d0_NeikiAnalytics.pdf

  • Size

    140KB

  • MD5

    132be581f0eb4eedb8a189b8144de7d0

  • SHA1

    ff9c159a14e1d899244065dbf7abb932ea5b9e96

  • SHA256

    e9ba17e5152be05db82bb191f9a5df5de7c437475eb34f52e334ebf847f9e1f0

  • SHA512

    57f7531018cf9c9c7ff2ea56dae02dc676f8c22385f61748155d2faf6b5998ddf4629d5918dc595dd169bc15c03b203aeacd3a8ed29cb44f993a4a6c820ccc49

  • SSDEEP

    3072:pQktBi56CLq0wahjnvBmH7mgWjZmf7Q+ofcvPS6LE:pBXHKjnvB+mSf7nokvPSD

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\132be581f0eb4eedb8a189b8144de7d0_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2432

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5966939cc20645e8d9fa65db4e2a2e0d

    SHA1

    88a8189482c0cc7714c7f84c7511beb529c96004

    SHA256

    f2d14b445d67d852a89afd2a1a7c7ac594119a73c59816103cabb8bdce198d9f

    SHA512

    043b529c94928da546a11c62f8136e4aeedc2c42aa433099db348a2fecbc2343dcd95c22a7f74d1bd69e3299d3cfb447a2d67293af582e2d3e862581da7ceb2f

    Download Submit