Analysis
-
max time kernel
118s -
max time network
118s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
03-09-2024 07:51
General
-
Target
883633210ba38dc841cee4ac11cd8d9090e8b9e0d069fded62850ae80a7c4051.pdf
-
Size
54KB
-
MD5
e90ee006476ea85dca06660401c9e6ac
-
SHA1
92d9e46398c88b7e257a70bddbda2660c29a209f
-
SHA256
883633210ba38dc841cee4ac11cd8d9090e8b9e0d069fded62850ae80a7c4051
-
SHA512
95069e98684aab160f6990108415816454d24ebea77f4f1414d2dacd45b911473cabf9a08ff085fdcebbeb4aac57bf9e566b048b87a241b1306ee4f1a8378d3f
-
SSDEEP
768:9jJfbicfEv16g0MwBsBAhkKxoTJENO/uyo0hGNrn7Sxn2xLov/rCriHg94t/ASsg:9jVbJEv16gVwAOkKxMK82sxnV/XARxdK
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\883633210ba38dc841cee4ac11cd8d9090e8b9e0d069fded62850ae80a7c4051.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD58180fa404840af8e5630290d32838deb
SHA1b9dd9a6a72f4ad2cb4bea1ce97783dd9333ee38a
SHA2563ad78cfabf8e76f38eb57d0bf5a174744f36f54d399b5dd4a20832f3db910989
SHA5124a82678da8ce666a5b393340952fe6013f09e2c7446c88816dfbb0479d4d74692fa44fb791f8b95ebdbe31dda8ec3fbd13d7cc724409215f102f9ea07038bb5d