Overview

overview

3

Static

static

3

28e7cf419b...cs.pdf

windows7-x64

1

28e7cf419b...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    17/06/2024, 00:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    28e7cf419b2e594a605f8dfce3518c00_NeikiAnalytics.pdf

  • Size

    59KB

  • MD5

    28e7cf419b2e594a605f8dfce3518c00

  • SHA1

    893dd4220cc7d8ae5074518daea5389561511499

  • SHA256

    50c83319221dbaf1f5b38f4f55ad7b07c3c506227fa301d1a5701562c9a72567

  • SHA512

    ac26cb7d4fa84593fdde4929767947b5f4f6c7416ccec7d984f744130a786e826942034caee9d215dd0ef5a190e3d4d983e34d4015c801c3b1424c3be6f9b7f9

  • SSDEEP

    1536:EuBj+0D8Jb3s4OkLvN1/0D/oHREYvkf+XeIj5Wj6KY9Otgpld1TO:Xo0D43s8Ll1/2oxEYvkkp26KY94gpldw

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\28e7cf419b2e594a605f8dfce3518c00_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1640

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0229e58c33b8df2a8f9040d5f6eb43fe

    SHA1

    e786a839cbfbce436fe8d36ddfb700fc8d204fc5

    SHA256

    03f0dd4a62693326415ac7e0888090f93f3c41093f8142d19841eca48f83db47

    SHA512

    8be8d90734b01695304ed4834ac20c2363bfc974af6301ca993319f845f8336dc2681de344ede917aae667eab8739ef8e0c6f7c9018b89cb6b3951ef4917e699

    Download Submit