Overview

overview

3

Static

static

3

787c8f419d...cs.pdf

windows7-x64

1

787c8f419d...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    27-06-2024 09:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    787c8f419d34f6a63d4fbc01d78a07e681c88face14952eeee7ea2b06e8a4786_NeikiAnalytics.pdf

  • Size

    81KB

  • MD5

    2e768952e05ce898d219f009a36bf150

  • SHA1

    d04c1b4c0817ca42be5b51f54b68b37c04b6370c

  • SHA256

    787c8f419d34f6a63d4fbc01d78a07e681c88face14952eeee7ea2b06e8a4786

  • SHA512

    6f6a09ed5062e31419e35e9f4afbf8c62509cd4289de3c03b265afd408c0226dfd3c9bf6f9f2580ffaf2c37d1605a6fac294a7ce1e537b14783eb13ecf5f3e16

  • SSDEEP

    1536:7bBOKfSnPycLYM/S7Bl9qXjJIQCWMVNSpH7ItTUha:rfMPycL9S7B6zJmViH7I5R

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\787c8f419d34f6a63d4fbc01d78a07e681c88face14952eeee7ea2b06e8a4786_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2240

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a12842a9dca6975e269e002e43e693f8

    SHA1

    727b417390fb96dcd4d3341bdddabe6cd3e33a08

    SHA256

    43c3b39ca5e61097166a3def45dd4545095db12676268edcd95e5cf6788e09e6

    SHA512

    8766df02f82751ef2907523ab1a3236ae4bdfafa0effe713b1819832b5c6d754f9bfd3bcd2052c9419b7403bde4f5f96e73698060ab1ada1182f8ff072e93d8f

    Download Submit