Analysis
-
max time kernel
359s -
max time network
361s -
platform
windows7_x64 -
resource
win7-20240704-en -
resource tags
-
submitted
16-08-2024 12:29
General
-
Target
IISS Prague Defence Summit 2024/Annex 2/Annex 2 - IISS PRAGUE DEFENCE SUMMIT (8 – 10 November 2024) - Copy.pdf
-
Size
202KB
-
MD5
388ebe1c45ebdf3ce9e4631708adb49a
-
SHA1
77ac70b8b309d62bce551bc544279fa9e07325f0
-
SHA256
901d713d4d12afbcee5e33603459ebc638afd6b4e2b13c72480c90313b796a66
-
SHA512
1e87b788c8a0c3acf528e323b05e8c2cf8ad7233eb40304e37d059c5675d6c9731d1ace895605c61d2805836367073f9e533a8fde45e4744c4cf61efdf0d2814
-
SSDEEP
6144:SjljdmqTXptU8sKXCEJZHvs7nrRsj/Sk05/uc+:QjE8HJ5vqnrRsekMx+
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\IISS Prague Defence Summit 2024\Annex 2\Annex 2 - IISS PRAGUE DEFENCE SUMMIT (8 – 10 November 2024) - Copy.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5f59dc2931e8af520e9dbb7075735363e
SHA1e604efd09f58421f950864bfaeb4552ef2e067ea
SHA256a718f1c6aac593aa8c1807141870510ac9fc492cd43f7c9e1d018b2c29ba4939
SHA512dde3587cef2b09cf6d2c529095452ac7a8144a7519d95696b3a67eb4081e679d96eb12edef9dcdd3b00daa47b29a746f42d83a164f82b0870071e0fddc6b0b64