Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240705-en -
resource tags
-
submitted
03-08-2024 03:18
General
-
Target
4101747d07a161465d01a805949783f0N.pdf
-
Size
190KB
-
MD5
4101747d07a161465d01a805949783f0
-
SHA1
3707901e9ff8daa21a00fead7bc91d1580097f0d
-
SHA256
fa8323c74545bf274ab1da6414f22bcacd17037c33ddbc6e06f5282162283c05
-
SHA512
55c46ad9901e082aa1b67f4dd9ef60ce5d264a5e07a92d71b978c60951d911f2dc5944105e6004674df531fb2b6737394d053e202a4bf7e366f384ab990fedcd
-
SSDEEP
3072:H0VbVmW3BCwUKZqFpEkKcvAxMruHrhSVphLcRURZ5oth7BchEbfoP4fv6U/a5qYK:kbVmWxrUiOLbf2rkVToGRZsgObAEKEy0
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4101747d07a161465d01a805949783f0N.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5d65f3db62dd6425ec20290a4aec95d52
SHA1c92e0d1366d6c595fc557d98b0c2521e6eadc016
SHA25689d6420985c927082f74c7c3a808d92149a770248b582f56c5adcf6d2672f473
SHA512c742be76650c8da395a58211ff2fadeea73560a4c4b484915f71d3dc3a5ca8535cf7a24a4f4c83b9cb7045963a445ddb8e3fb79d698f5976ecdd321e61bb3224