Analysis
-
max time kernel
96s -
max time network
18s -
platform
windows7_x64 -
resource
win7-20240704-en -
resource tags
-
submitted
18-08-2024 13:40
General
-
Target
d60ebbf6be8108074fc9ada384769550N.pdf
-
Size
245KB
-
MD5
d60ebbf6be8108074fc9ada384769550
-
SHA1
626c85d10566474418a998721707c585b2511223
-
SHA256
9baac75b13f2e0a78d5f690ca8f8992e4a10b955626b636bbdbd6d498c1903a5
-
SHA512
eee30e999a9fb45ed32d244884b10bd96d547d6c093809b663e8323da9b305f2cc00a0c5cd7f3fef5bfeae37a9805e29443f242aa51785a5ac31533be2c00444
-
SSDEEP
6144:UnXHKjnvB+mSf7no7PiVUPdrshKNw8G9gkyl:UnXH6nvBTSfro7s8dwhpq
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d60ebbf6be8108074fc9ada384769550N.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5457fe7352bb222b6cbfa3557184d4927
SHA1aeaf15ab6385b0cb32fab5066ffa36e5700eb6e6
SHA256fa3a1c572653957b9b437be34f313e6ad473415ce5754b3efc743579296d10e3
SHA5124af1469e5ba01f51c1111062b6cfbe58a03d55cb783d9cfbb7a180b1e1c1a8fbb83077e781e7123bf6f0fd891a3df12e3fe29f8f3598f0ae3af3845df9969d65