Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    14-06-2024 06:38

General

  • Target

    a9cf61bb0e53c4f9ee508c4f04a33e00_NeikiAnalytics.pdf

  • Size

    177KB

  • MD5

    a9cf61bb0e53c4f9ee508c4f04a33e00

  • SHA1

    cae48dfcf9268654a5eda5372bad942ed2f0c238

  • SHA256

    31d39e91f7c3f8dcad0c562b05e4075113b865724a49940d0a09fb6ff69d48cd

  • SHA512

    0ff487f39e91ddd406c1bba953e9befa4a66a178e2b5cccde674c58e15fffce7e619b7401937ef3a30a564b7aaa14f4d8cd795f8b955c1819ba65455b3fde456

  • SSDEEP

    3072:l00jIkU1Vb3M3TNwS5DCemo6ofdHDU0EvHHAP56:yKU1R3M35XJdTfaPgk

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a9cf61bb0e53c4f9ee508c4f04a33e00_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2180

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    72cfac33e995842f77396db9e8ef3a27

    SHA1

    765d999d0fc3416cb14c410a828d156198608bca

    SHA256

    c951af1e209311eff97337019623ef0f94b6df9f93c9915cf90b9546d0777420

    SHA512

    cad1338fcdaaa95a7f41077cc01533e2f41bb4e81084523b2f50342acfddb193c78a0bd7beae2e2074ca6967dc14d4bc94e6b59df6ad4c9fda0ef82bc3942e77