Analysis

  • max time kernel
    118s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 02:00

General

  • Target

    558f488aa69885421a96f46fe3c5c530_NeikiAnalytics.pdf

  • Size

    338KB

  • MD5

    558f488aa69885421a96f46fe3c5c530

  • SHA1

    8892018c6f78f78676aa6ec9beb47c208fc0c9b2

  • SHA256

    a037fa0030aba69f6f3862a3eeff69b2599576e8439c436b5e6ce1cd5d4471ab

  • SHA512

    165deb3fe31122f9851ca1ed8e60eed585791b24505cc493c433566272132238d5c076915c0b9b3d9eaba6a6be74705b3f5238f1c3c5387a24239668d3bcafab

  • SSDEEP

    6144:ZLqXaagRGFJ3ZBLPnFdl/AmRqIr2fuCVhVca2z9xkz:5VRGFzpPRv8uCtcR9M

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\558f488aa69885421a96f46fe3c5c530_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2284

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    c75030a636f9cc79a851873e1aaf5654

    SHA1

    d5375a3f667389060924698036eb1252ce30a6c3

    SHA256

    b4f82ba59d542cc1a43ea20d5cece3caaadab4dd1e6271c822446d3159b63cc5

    SHA512

    be0c8e140d359de0e5a017b68a4d019c91b648e198f4741e0d1b13f810ab33c3d09f3018d27d79195e94b7c7046e13ee850e88a88f2a067dcb746a96d38bda22