Analysis
-
max time kernel
94s -
max time network
17s -
platform
windows7_x64 -
resource
win7-20240705-en -
resource tags
-
submitted
21-08-2024 20:23
General
-
Target
9094c1ebf7c89186a01fcc803daf0380N.pdf
-
Size
1.5MB
-
MD5
9094c1ebf7c89186a01fcc803daf0380
-
SHA1
e334854279bd5f50c9006f2d2105f3fdf20330e7
-
SHA256
15c3fb02c112bd0955b2578e19b763569c99e807553172f3fb48428226b01565
-
SHA512
1a86654bfe9dfc2edbcd34b463f6e1f6574f41a4db019d827c23292942598e25135746c28be21ac0366f41589a64085a47c382874e2ddfe39ebd6552fa3e03d4
-
SSDEEP
24576:BSSAlVjRAftRWj1/3ZXw4W38HkB79XWSNpcXtxbGSa+zidMrIwV88NRHzxwR29yA:BSSAbjRA7W5ZVfH89m9/fw/8zx79Iazz
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\9094c1ebf7c89186a01fcc803daf0380N.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5804cbdfc419973dab2d007e196af4475
SHA1c23a7f3d2bf45d19ed5c116899443fea946a5800
SHA2560dd7750bb01c25ed6aaff21a0714233cc8d79b989b84958f4de5c578cad6036f
SHA512dd8669e9173f507e67bf63de406c6b585b2d2e94020de87fa50a747436f1265cba7f27a69245f4a27b0d8a0c709c25f1b746249ba832d0fa3c9a3448654031e3
-
Filesize
472KB