Analysis
-
max time kernel
117s -
max time network
118s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
-
submitted
03/08/2024, 00:34
General
-
Target
257e1d48b8790ee8da712f4f5e2a0320N.pdf
-
Size
37KB
-
MD5
257e1d48b8790ee8da712f4f5e2a0320
-
SHA1
1b17537fd11101232f6faeb99de3c3b3f6fd740f
-
SHA256
97f26789eddd5516caf4f5880992e787ac17531330c163199b7608a9a9ef0fc8
-
SHA512
720902d3cfa1075b5579a0e291444403ce66391393d374c343b2228f1a78d7e78b160fafed9abfe48bd91cfaa2ade130455e983953c75d0325c2784a614b6278
-
SSDEEP
768:8As/DgGzpDdR5Yk89CVa2gXD9vT8GVFyw7mYRRD+znmUtY3gJhYCCbxq4VS8nA/T:ZGFv89AFhCgr0AoIhxDlO5LxY
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\257e1d48b8790ee8da712f4f5e2a0320N.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5f892da07f72e0e84c4bc79924095e5da
SHA138cc981164c3ec54aeea1f40b088e429def5fcb9
SHA2560ed813baab1ff19b8302c1dc658124fa1b313becdca7209c09bb791971635a92
SHA51291fe497dd92a3f0b5ebbfa5eafc5a62a2f8836035245ae94e381e99d77aff94ff03ffb86f3654da7519aaa93ab6ef3420ea09b70818cef7fc0c9b955e01a3dfc