Analysis
-
max time kernel
94s -
max time network
14s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
-
submitted
19-09-2024 15:37
General
-
Target
a21278343d23f233daedec3e4ab1dbdf55c1838a9bbc3105a730c730e7e6a9feN.pdf
-
Size
1.9MB
-
MD5
d8e1024671f98519ac2a277978ea18f0
-
SHA1
51d422d1fbf3549606b57a55f90fe0c8bf6ce28a
-
SHA256
a21278343d23f233daedec3e4ab1dbdf55c1838a9bbc3105a730c730e7e6a9fe
-
SHA512
6b58aa4310e03fd069356aed034dd151e8923b937f017f85e24713de9d37eae266b2fd2ae999961a241cbefeed9381a097b1578cfa46179f157010518f106547
-
SSDEEP
49152:aEamaccrUvZNiJI0dgchXxwHnGherVsM4LEmuEnrwY/4Q:ndZ4I0rAmAKM4T58fQ
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a21278343d23f233daedec3e4ab1dbdf55c1838a9bbc3105a730c730e7e6a9feN.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5bc1222d1babb495c992d440ff6f6bed5
SHA171522ef60b7002f08deb8c25b7f09206a1e62cad
SHA2567e10e0b21389c85dbd853aba46dc7faeee5542f88b80af123c8572e946e30682
SHA512a4934a2765479e559cfb226e478e84fdfcbd34a84cf183783be9caec5b1925ea70ca14d72866b38edafee93eae3c007d739707e4439ce8dfddbaabef0bd5301f