Analysis
-
max time kernel
94s -
max time network
17s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
-
submitted
04-09-2024 07:23
General
-
Target
701023.pdf
-
Size
475KB
-
MD5
7823fcfc6432dd89e7d332323f32f7b0
-
SHA1
3e5d5353d3a7630398f0457d88e3c925515b8903
-
SHA256
6adee9999f4965b8eb90fa8d13563aa807a6b76a78e1d1683ec928932b609d86
-
SHA512
92dfa2845cc9bdd76246840d085f59c9b8fff7ffa31d37cf6e7081bd15d39a3a4a9f411d78231787b49cd768619b3047999975a16813f484ddf9f93e440cd8cf
-
SSDEEP
12288:8rmzMKhjqqVx/I7zs2dR4xCc2xBiPZl6X:8rmMIPVSsZCcCwPOX
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\701023.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD507701c08a59ebcc187c7c0c09841d554
SHA1a37698367552a9f5f0f702a49cd8e728cf0f0b26
SHA256ae15947fc535500cf7f7b690f25bd356ffef09b96a29c391bfc7b9357376f1fb
SHA51230f7d8fcbec875afd51d27b76ee8eb17223587fcbcc022d165d19ffd255e39d298c9b815a33bd27c433a83d489b4440eda9198576cade4e2808385d7a96c8f0e