Analysis
-
max time kernel
94s -
max time network
16s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
19-09-2024 06:34
General
-
Target
d01a81ba8030120c8a6e12b078968a7b1911b28745e289667e372093a8b10e6cN.pdf
-
Size
441KB
-
MD5
ddca73da492d290e6b595e9a7c478ab0
-
SHA1
3dacad53c70ae66e692b00a57eebac28ba34942c
-
SHA256
d01a81ba8030120c8a6e12b078968a7b1911b28745e289667e372093a8b10e6c
-
SHA512
c3148e73c3be77de880ea3568a06b7c68473468beadbfbfb6c3f78d6db241d26160f242308f9b7f55d8e8bd6761054aef88474ca3defc5e553302df9b3cb1a91
-
SSDEEP
12288:Dw6ynuL9VgCIgxcXJ3BShE9YnCcw4nYDy:U6MrCIg08hElcZYDy
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d01a81ba8030120c8a6e12b078968a7b1911b28745e289667e372093a8b10e6cN.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD57368498676e83608e5b5985a0d61cf6c
SHA1b27204c461302231fe66a581675bc69d3d810312
SHA256d180fdba6224642073bb4c5ea46d97c01221dad8ab651dbc4d8e53246883267c
SHA51280582bd56c8fad073d2b3c5f7edeaa890ea5682834c2ef0df6dc89920def9e4d2efa0eaa438fd5f249fabfc8a372f26420dfe967218926a9ee0f09919297880e