Analysis
-
max time kernel
118s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
21-09-2024 20:11
General
-
Target
21514d8492d942c2536b48f39f874a9b5427e4e2893c5b90fa5e821d2d859048N.pdf
-
Size
278KB
-
MD5
4a7c962063441c5440c405a33fcbb420
-
SHA1
37dd7f990369c7fee6e174b9c41bdb18d3fef067
-
SHA256
21514d8492d942c2536b48f39f874a9b5427e4e2893c5b90fa5e821d2d859048
-
SHA512
17a9aa03780c88a77049fe63460a96b98a61972942e6199cd821720b7dca3f335cb28a2419e087f370d123ce0f7c6ac9e7881761ac4422516b76082943f22d7d
-
SSDEEP
6144:g5hYtdEp+Me5TvCUp3HOZqGxI6OcEuCUPpWTdKz9/UYyO:gLsS+HFag3IqGaBcFCUPr9
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\21514d8492d942c2536b48f39f874a9b5427e4e2893c5b90fa5e821d2d859048N.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD53ad5fd5a121dc65ca7cd9ca99706feba
SHA1e12aac7d2c58b5e2e3ecf2ae56b14b57a3d14f96
SHA2567b7f80abafba7dcb82ee648fabea15020cf2bc0c279acdd5a55e0ed06b9241bd
SHA51203e4d1242574bbf7b9763ce64069f0edd8d54b4bf15e761d04c3cb6ad2117bf574d90fffb957c342b5ecea4f872a028d76e8f0a433878d2528fe69aebb56ea7a