Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
-
submitted
01/09/2024, 20:29
General
-
Target
f4cab1bceb065bb6e47a44553e4c62947b7e9be95a0cc0f8f21db3cd500997dc.pdf
-
Size
47KB
-
MD5
5ec6cf52422ce213f39e3824728ee930
-
SHA1
0d9e0cf7b63db4f9d33046771daa2964c9c4ba80
-
SHA256
f4cab1bceb065bb6e47a44553e4c62947b7e9be95a0cc0f8f21db3cd500997dc
-
SHA512
78a02ee45bfbc93f9813657d76945801e51e02a75089e81e374d8ceaba81d2e42c63b88874028a375af13e919a80eae8e76886c90702545fd3592cf5a49bef24
-
SSDEEP
768:yKYIQQVcvybomFY8GgX/cYioYxU9WW0S+CwcZMJJWoUVybj8hQORoKzeSSnbdZ6g:ylMZY8ZX/s5xW3+CtMIVkTUzFSnbP6g
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f4cab1bceb065bb6e47a44553e4c62947b7e9be95a0cc0f8f21db3cd500997dc.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5788507fd55835fd29a7a63815f4f4ede
SHA1a981455184281ff5d9e4871c30050014d6be3fdb
SHA256af8274c0aefd9cba61d890522d78d8ca7689cb55984971370d2eb83af8df8ff9
SHA5122b56878452b0b0cf2d8358f673fcb032c65abaa566b356859ceb7bd5fa359ea4a30932786a2731a56e522c998d80585ef77714b323bea8f25dd8ea16cdb63bfc