Overview

overview

5

Static

static

5

5142d03444...cs.pdf

windows7-x64

1

5142d03444...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    01-07-2024 12:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5142d034448ad1a242eea8b349dbfac04aa518a053d624400b2bf1d94f3c5911_NeikiAnalytics.pdf

  • Size

    305KB

  • MD5

    fc99cf28a5dbce2d16b5b144927f82b0

  • SHA1

    9b5752ebcf26ebd36dc8c4ffcbf65db3ff9f6a0d

  • SHA256

    5142d034448ad1a242eea8b349dbfac04aa518a053d624400b2bf1d94f3c5911

  • SHA512

    75cf3ccd1a16ae53e63fdcc0557998f9c0423023f043bac9e94c55034fe61478523e73b73c057bdfc69cd89c6b739c46240bd04b8af4f596ff765a086b3bbb17

  • SSDEEP

    6144:v6doFgJ23B1BXwRxhuT+LhqblrnHya5itydLqMA+QjLV:QLC5Axhjsbl/5it03A+QV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5142d034448ad1a242eea8b349dbfac04aa518a053d624400b2bf1d94f3c5911_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1688

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4f42dc17cf035b83146911fdef709ba9

    SHA1

    cb51acdc6bbaa341976eb31f4132b9df018835a6

    SHA256

    ea52103f793ee9c929028e843146b10971ce3de82b333ffb024fd47402a337f4

    SHA512

    0bce69c8b873c7ab35c33e9d70666762eead6395542e1d40a60ff07ab0ed5d8fca2667ced7e13f387aa2002b34a9c9f33c25ecb218358c01a0be182633960fd4

    Download Submit