Analysis
-
max time kernel
118s -
max time network
126s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
14-11-2024 19:49
General
-
Target
134d6747db5ea42c1a5ac58183e5dc07975f641698604037490b3b7fa5bbf208.pdf
-
Size
257KB
-
MD5
39b086857e5b7a20f8d2d1c0ec8f9797
-
SHA1
c4afa515eae28b2cca027c1f0c2056775020726d
-
SHA256
134d6747db5ea42c1a5ac58183e5dc07975f641698604037490b3b7fa5bbf208
-
SHA512
1a77a6945ab059923b007fa08364f26ce64731e3e32eab7b117be7446ed94bef0b081e57c31ac520f78e49a0dda7d97d96a4689fbb54bc718b0fdb9c5e8328db
-
SSDEEP
6144:f8fk+F6gWVOp7iClSPPNeRqMWSbaaqQ3Hi/9XLtE4r:MvYPP3U+ZP7C4r
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\134d6747db5ea42c1a5ac58183e5dc07975f641698604037490b3b7fa5bbf208.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5adda5006cb2bebfa3c1a6909492e95f3
SHA1d96e693cc4de4ae58fe248ee2bc0b0655b2b975c
SHA2560182b5a0039de4c1729f6ff2d3a3c884cecb06dd07042706c5455736fba52ce4
SHA512d72e0218a8eff732fff5b4ea63a7d9a592597185af4721bf94cd015b248ea26ec5e45bac98b4e751eab3ddb1907ddedf106b63ecdb29043c997078371eddc814