Analysis
-
max time kernel
94s -
max time network
17s -
platform
windows7_x64 -
resource
win7-20240705-en -
resource tags
-
submitted
03/08/2024, 01:34
General
-
Target
2ebaeae77d234f8c427b0b753eeacd70N.pdf
-
Size
136KB
-
MD5
2ebaeae77d234f8c427b0b753eeacd70
-
SHA1
994de19d95992c0e9dc5c31f140dadc075be5959
-
SHA256
4504ee4f83f28c692d04898f931df8b55951ee6bb78a92928217645db838085b
-
SHA512
2b84960b1c06e7b0641ca1b74df53d55378ef01576645bc9dac5c2bc8d3a963f55464700c5b965b30228814a8b4db299d96c3f9019546e023d995b8b3e24aa0c
-
SSDEEP
3072:uxbuKqgF3SsQ7eqc19CpYQODzsWoVe9NmV:uNhFF3StLACpYQODIxuNE
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2ebaeae77d234f8c427b0b753eeacd70N.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5b8d637b9d89d743b7784760e1da0b55a
SHA14c949643992e5f89f39fcd927618df949ad60af5
SHA256f32600ec178e7e9e340eabc7fe332243913f6841a299fd505aed67c069171852
SHA5120d41672e5aba1e484a3175879f743f457bfacc6af29e895f4d63d8d8546fb55e0dcf45c328d9a2bc3f339a77529088c4eeeafafb8616f838f6b82f5af215201e