Analysis
-
max time kernel
120s -
max time network
124s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
-
submitted
30-06-2024 23:07
General
-
Target
219e42032f14eb2dd304cea7b20dd85d25e860f6c0a50db70fb332feeeacaf06_NeikiAnalytics.pdf
-
Size
91KB
-
MD5
712c5dcc7323d9701ad073ea75991830
-
SHA1
fee3f60e7d1ba6ae650186d3365437d3781b85b2
-
SHA256
219e42032f14eb2dd304cea7b20dd85d25e860f6c0a50db70fb332feeeacaf06
-
SHA512
89d8102492adc89ee5971c00e9bca4408435313fc7da7fcb715d8f3faecd86f567636edc90784045dbc57b9a7dfcce9513117ed867b9fe0c9c59507c66efa699
-
SSDEEP
1536:88TgOUZv+shs2bkCPBJCJTxY+79o9t2ib4fsQP5t75AI9aNw97eZLdwFDvS686gs:70O4+sK2nJCJx9o72iCPz7gw97iLWDvh
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\219e42032f14eb2dd304cea7b20dd85d25e860f6c0a50db70fb332feeeacaf06_NeikiAnalytics.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEventsFilesize
3KB
MD5b964ecfb2b0b43a47ced20b0d2a6c48c
SHA1ad62ce98a8888ab6475a4f86ce8c4554b708ccc4
SHA256121b3666400a0d06779a5dd30410fcc0035815f875d7a46c5d99a42bebfb7bfb
SHA5127eabf60ce1217d00ae7172b987c14b4f95963bdbb484d38e0d97b404925dc2c52643f7ae55f51bb70b9000ec36832e39f5c633b4e43498b8bf82139a7dbc563a