Analysis
-
max time kernel
112s -
max time network
19s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
09-09-2024 06:08
General
-
Target
533f673ef57d36b17346c4f2b1a2e6d0N.pdf
-
Size
75KB
-
MD5
533f673ef57d36b17346c4f2b1a2e6d0
-
SHA1
596b2b45d54cfc1e151c21d7685ec0d999c36e7f
-
SHA256
e375184c649f7fad945137ea1b6b5165d73b9e3d543b47473aaeb73435e77617
-
SHA512
848a95a45c933b947e09186cc8d73e90e8e365a7da2cdc2ef4fc7a2efa544b54ea7bc25f77d28dd450112b6d780f1c79ae56cecc8b18835e1ea588581d1175bf
-
SSDEEP
1536:qdqGVLo8t4ROtfLm9TnOXCgDF2222WASufPu/3Bv4:qdqGVktAtyOyusAS4W/3Bv4
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\533f673ef57d36b17346c4f2b1a2e6d0N.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD516bda27c252a100658b1b64bcee27588
SHA155ec0834100119f6443a1e28c145e17bfba5fe93
SHA2566a5a2e1a21c4457cd78bc8085ce7523eba53fe3e9b509c2f9141dac39486fdb8
SHA51296786772fbe78f4385a1d8645b05a3fd80fea24bd8a194b71ab6ba4503c7b8e1a65afb3ba6807381eab847d5246c1e47bc1f7c39f3e289a0c4fc5413e069b769