Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240419-en -
resource tags
arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system -
submitted
14-06-2024 07:51
Behavioral task
behavioral1
Sample
ae7cc4472274c31ab0ebc1ed10e0c110_NeikiAnalytics.pdf
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
ae7cc4472274c31ab0ebc1ed10e0c110_NeikiAnalytics.pdf
Resource
win10v2004-20240226-en
General
-
Target
ae7cc4472274c31ab0ebc1ed10e0c110_NeikiAnalytics.pdf
-
Size
142KB
-
MD5
ae7cc4472274c31ab0ebc1ed10e0c110
-
SHA1
d553d63eaf896f5f739f9220d0a1300b7e34e3aa
-
SHA256
8ad6e1c51b7c2295b9f150398d9023bd75dc87c701366d59f75dca1318098ec9
-
SHA512
8dfb7b19ea30c427bad2f41bc860e20a8e115ec4c67234345cfb2cc8b03c32d58a2c95c86b01c0f5b20ceaaf319563ad7e861b6f68c45663b06b92b654e3ac39
-
SSDEEP
3072:6enF9qH1jY3KfsNEEXYJ+XAJ8HmT8qlmy2+RYDdhDxGRj+CmPexz7Z4U2CN:6eFkHfs/OJVou1
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 1044 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 4 IoCs
Processes:
AcroRd32.exepid process 1044 AcroRd32.exe 1044 AcroRd32.exe 1044 AcroRd32.exe 1044 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ae7cc4472274c31ab0ebc1ed10e0c110_NeikiAnalytics.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:1044
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5c05555a12ae35c271d435ae0cc2e7845
SHA1cd82350c8abfcd01950204c17df16bfd4892be66
SHA25674a7dbc211025c5d029e0bb26871c58b92e29a9677a434967f6d3822734847c9
SHA51299218a54af700f3ef19658436ce8f8a2b05c477b6f494d4ffbbb3953bfa6fd9607793a203431f82830cf32051520ca6a4cf2ea82a9adee8f25c42f7e3b41fa0a