Overview

overview

6

Static

static

6

Carta soli...ES.pdf

windows7-x64

3

Carta soli...ES.pdf

windows10-2004-x64

3

Certificad...24.pdf

windows7-x64

3

Certificad...24.pdf

windows10-2004-x64

3

FACUTURAS ...IRE.7z

windows7-x64

4

FACUTURAS ...IRE.7z

windows10-2004-x64

1

HES__1000021871.pdf

windows7-x64

3

HES__1000021871.pdf

windows10-2004-x64

3

HES__1000021873.pdf

windows7-x64

3

HES__1000021873.pdf

windows10-2004-x64

3

Relacion_s...3.xlsx

windows7-x64

3

Relacion_s...3.xlsx

windows10-2004-x64

1

fv09004135...53.pdf

windows7-x64

3

fv09004135...53.pdf

windows10-2004-x64

3

Recibo de ... 4.pdf

windows7-x64

3

Recibo de ... 4.pdf

windows10-2004-x64

3

Resubmissions

19/11/2024, 16:46

241119-vabhkaygrk 6

19/11/2024, 16:43

241119-t8gxkatjhj 6

Analysis

  • max time kernel
    121s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20241023-en
  • resource tags

    arch:x64arch:x86image:win7-20241023-enlocale:en-usos:windows7-x64system
  • submitted
    19/11/2024, 16:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Carta solicitud acuerdo de pago - ISES.pdf

  • Size

    432KB

  • MD5

    82409d40a7f55d632c56420b6237dafe

  • SHA1

    209a58e044a3aaf9c9660e979f5a54b0995ff2c2

  • SHA256

    824cb15c99b803bde8e16f411a3e03efb80e27d03dfeb000184f745ad4166504

  • SHA512

    f28c9f53f6f3bd3e78e0803c6a5902a6e294872dacdaee64ec918030175a5ac5bc0a4369b4d4a8b74638d35f336b46b8ae4ee422b4a7e5b1bda65ffaa3d3bb3f

  • SSDEEP

    12288:k0mOA9nr+Uv+UAROk8mrCFobP8kS0LGqmwziJum+12QNZqtX6Y4z:k0mOA9rHSt8mG+QkS0LGqJm+bNktXA

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Carta solicitud acuerdo de pago - ISES.pdf"
    1⤵
    • System Location Discovery: System Language Discovery
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2816

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8ed4a3772ddf7f8cb30399585a72339a

    SHA1

    421924652d27b80116e8aad965d5e1e8750a9ef8

    SHA256

    a46491e19f1edcd80c053e2c2968e70c30aba0274db3cfdc49d13a33db1f7c9d

    SHA512

    b249ca1de17d87375845d388958ffac7b404e5afa4ff0a6e842f8d36363f482434af9c40ee7bd4e9d63ed0d6c75e5c224fce4c901ffb6bb0ff94cca17a807e39

    Download Submit