Analysis
-
max time kernel
91s -
max time network
16s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
06/10/2024, 02:29
General
-
Target
f9caec9fc652bcc43387c13d6d9be9d59b6700ad06ec841cf391b6b308b5de84N.pdf
-
Size
399KB
-
MD5
b051accecc3aea7893d86a2f34335740
-
SHA1
4f686b97c23946a0cfedde1064848e5c389b3db7
-
SHA256
f9caec9fc652bcc43387c13d6d9be9d59b6700ad06ec841cf391b6b308b5de84
-
SHA512
3503438e9f771b7a5e7c5dc92233e5ce3c21c0a02d36bc903908669683a0ea30555abd91bf8e1b0833efd1a1d9b2505f569d43507f767e38965ace9df14eb916
-
SSDEEP
12288:PWpaEodOJcoUZugg/cN81nyWJSgRqSK/9:OpaPoqBNWV40BKV
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f9caec9fc652bcc43387c13d6d9be9d59b6700ad06ec841cf391b6b308b5de84N.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5ceb22ee094c1901d4e60ece402f1a55e
SHA13a64014aa947954d58ebff4e6ae945cb494865e1
SHA25644f14299d28515ad3b807e46fc09e0d21219105fa468162f08f2a512d752774d
SHA512248dc5fc88922f114e9c5bedcf492b78643890d54c79d6e470879ffdde3f874f620c5aa33daa120c0c275b886dc183c5da61e9a12a71656a27d60690341cd287