Analysis
-
max time kernel
118s -
max time network
118s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
03/10/2024, 19:01
General
-
Target
dc4ef0847c322c79efbed167c98b36e245f7cd6fe290ab83de284e8d2a995656N.pdf
-
Size
719KB
-
MD5
510c4f171394355df1292121860d06f0
-
SHA1
bb4fac58773c706bac7e26469ec5d5f20b764bef
-
SHA256
dc4ef0847c322c79efbed167c98b36e245f7cd6fe290ab83de284e8d2a995656
-
SHA512
308193755457c753fbee765f025ff6f79a1c22487728179844f6d0528dcaf40fb19ae20ee5685c9158b5801e864124ab356b70bf2aedcbe21e164d12f0841862
-
SSDEEP
12288:n+uBsS3a5NYYo/MNu+uBGNKoY41TuVViQtT6konrPKJCRQM+7e:n+uuSaNYYo/4u+uCKof6iwryDo6QHK
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\dc4ef0847c322c79efbed167c98b36e245f7cd6fe290ab83de284e8d2a995656N.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5ddbba08998b532c3236acbcbb80820b9
SHA142f2ca047a2d73c237c2985fabd62b941080d902
SHA2569a520433bb94c6e6ef6aeed9b253853a120a9bb82a88834b054c7b4b63827eb1
SHA512636314a8275c6885437fe0cef9768b20fa7735ced3e390f8da93ca43d2f9c987e721a01f3832acb95a8cdc7285d8ba60119a42c6c15b4dd8875516fc1ce9432b