Analysis
-
max time kernel
119s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
-
submitted
01-09-2024 10:12
General
-
Target
5ccaf08e2b2102d5b8ac210ef93ac866d7315ac55431509fd8c894b11939150f.pdf
-
Size
76KB
-
MD5
2bfc153b5023f3fb8ae52457bfc3be98
-
SHA1
ff99d12656eea2a30dfc63d4031cd56ca40299f4
-
SHA256
5ccaf08e2b2102d5b8ac210ef93ac866d7315ac55431509fd8c894b11939150f
-
SHA512
28114c2a5826d8548c0971d3eec80c44f778303835d2ac5525021f9f897710a7bc5c892f0ce779dfb75faff584f394ffde8a4256a6ff65aa8990af00d7e383af
-
SSDEEP
1536:R2CFhyPWzh9Zx5tm+/7nnNuvfwLeWTE22bSaqJlqWspORk03/:gqh0sxa+7nNui22plNRB
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5ccaf08e2b2102d5b8ac210ef93ac866d7315ac55431509fd8c894b11939150f.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD57ab511c80512a110e6c680d2204a599c
SHA1313b5024ff52ba19bec5fbaddc9a7eff15d6d2f1
SHA25672a04c8285b03a4038705b71fb364db4bf1a95de1a897851a14358877b032abf
SHA5128693e2efee983c7ea39ce15755ff69dd42e26093cf55b5d14410274621c2f83497e15c8098b78d824bef28b7b3cf5ddfeee1fb50b62319821a9bcb4e3b812fc8