Analysis
-
max time kernel
121s -
max time network
127s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
20-11-2024 17:57
General
-
Target
Screenshot (14).pdf
-
Size
32KB
-
MD5
b38fd33cc734304ad1b059a0e1958f44
-
SHA1
e7f159bb19f1efb7b199139cb306a9ec936afc1e
-
SHA256
b5ccd54614b08737005cae87db5c8972d0ac0844e1d5973067851e268bffa09a
-
SHA512
f2a9044d377cf2aed5a71c3c2eaf641c38d572269c1a24f1786b4b5b1a54f2b906966c6b94db6ddb440a13ed4c8c5dd1d43a6bd3e52c2b542bf89a4894a29cab
-
SSDEEP
768:E/Kds15qUzvqwekWEQGXiXW99/Cby4f4FC0Jt8fWFwjKd8UQQnmKRm:G18wYNlIiXWybqC0gfWFwjDUHbm
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Screenshot (14).pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD59009e4cb46869c38559e6c69236ed141
SHA1ef7e4d5e2cf55ae2d5038a238f79e9dd3784cc6c
SHA25666b419fd9a0938b32b0c73bd1485973d29f1e00b60cc636207a03727e6555379
SHA512757869c12657ce16dfa43cfae786a3f6a0ce5aee795996aa3d4b9a0f4c916025bba9778e426ffb4e286d675151cdacbd6d698413914f3a873a9465b9ea264aba