Overview

overview

3

Static

static

3

8d889e49da...cs.pdf

windows7-x64

1

8d889e49da...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 22:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8d889e49daf6af6fa2f9a02ca0cfe400_NeikiAnalytics.pdf

  • Size

    76KB

  • MD5

    8d889e49daf6af6fa2f9a02ca0cfe400

  • SHA1

    76ba787b22855f8f5e340d4bce66d4383b8a5461

  • SHA256

    db044ba01abcd7de47321be4cbc26d000b388fc87311fa56e356f2925347127d

  • SHA512

    853d8e263ff6ec86dc080a354f0271a7ab4d24f9434b0d268d76fcd8bfc9ee3ee0cb5b07e130301c1615d432d4837ac423fa8431771c5cdbe1836ef55ec1da6b

  • SSDEEP

    1536:18V2kfJBrcGj2thCb25jhSLxe82H9U68sT4nynbcWiSPljK:0fjrFj2ruIjMLID9ZlMynbrpP8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8d889e49daf6af6fa2f9a02ca0cfe400_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1640

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    354456ad7ebd0042c81cc057ec7dcc9c

    SHA1

    1a05e7eb57bf3988083a6866f54a004977bfd876

    SHA256

    b4f1be0681b0c7de08f94a9fae99bcbf7340de470c550160abb3b507cf25f4c3

    SHA512

    b76c78d57a7ef0d2d30c4998d414e05cf0a635dbe97ea5d4b5b208c96ccef9024c20f8932441055d61db2127b8690212bbe6ecbb26adb5329872e2ad491a26bb

    Download Submit