Overview

overview

6

Static

static

6

2cae439ac0...cs.pdf

windows7-x64

1

2cae439ac0...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    01-07-2024 01:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2cae439ac0722388bf5f361205345557b5ddcfdd796c9ff3e9c69b8c53227754_NeikiAnalytics.pdf

  • Size

    434KB

  • MD5

    cbb53076effaf5636a2de80fb52a9cd0

  • SHA1

    a67558577dd4e3e6dfac29944a5b7aa0e2171aad

  • SHA256

    2cae439ac0722388bf5f361205345557b5ddcfdd796c9ff3e9c69b8c53227754

  • SHA512

    8f345b899260d179a4299ad0a8a092effbd3181a759e20c5115aada82879ce3899f9f56b01133b890056b5f60df0f6231300cd49918e3580839ca97cae9bbe90

  • SSDEEP

    12288:fPb2YSSGVFwBVUg2qScMn/V3ybnvX74V/yxpHKM4u:4zQGtq4Mbnv0a7HK9u

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2cae439ac0722388bf5f361205345557b5ddcfdd796c9ff3e9c69b8c53227754_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2348

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e162c323f764d84bd96b34c9dade3f1e

    SHA1

    82384d00c96955faf0ba4c13b4151605885a8a82

    SHA256

    756e1daa09c9eeffcbad920e8b846ba0e554b4e2f97c7bfc0996dc69aa55fdfd

    SHA512

    0ab9454e6c3d8927d0bbb9661ec3ebcdef62c4bed88a6b415f4c447094cfd3d772ecc24cbe3ac05655bc1368a817eb9f6188f72f29871ed34c28a7d5fa6c7a67

    Download Submit