Overview

overview

6

Static

static

6

48786bdb22...cs.pdf

windows7-x64

1

48786bdb22...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    20/06/2024, 08:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    48786bdb22d70806b7666881fc2cec25c16af608742e71f30bdef4a0057542a0_NeikiAnalytics.pdf

  • Size

    310KB

  • MD5

    4050ba1ac17d7d51de319aa5a99f6ed0

  • SHA1

    2777801a02803ad5bdf5b3b427ab5257217aea33

  • SHA256

    48786bdb22d70806b7666881fc2cec25c16af608742e71f30bdef4a0057542a0

  • SHA512

    c0ded807adcc51cb0f159440e569a2fbb3a571c4f0306c515c7baca37721f6c6791c591807106fec4b12ba2f080ce311bad017a51ab2d171fad0d6b9c8a9c4a4

  • SSDEEP

    6144:QOWF9nYjDuOr9QgwFBDu+zEtycdr4n7K+G/i2tl2K8XhBaTQh:QOGVYjDuOryBa+zcDdcn7nK2K8XhXh

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\48786bdb22d70806b7666881fc2cec25c16af608742e71f30bdef4a0057542a0_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2596

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    67d8c9ee31906205904d0c3165a60bfd

    SHA1

    323123e3a1671dcbd795d2fbcccdb56b2b87b78f

    SHA256

    d017dfd50e386d0537d875f7602c13618ec8d2aeb83f5d61eb7b509a0eed8dbe

    SHA512

    04e52046c3cf83879760691cb64f99e2667c69cf6b8200bd6472e58080d7b21febe072098b2ca7d71158e20838740a810914191747470f3ecb5952da8122c468

    Download Submit