Analysis
-
max time kernel
119s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
14-01-2025 00:15
General
-
Target
Resources/Data/info/tiedtimes.pdf
-
Size
54KB
-
MD5
8d740333911ac4177712068a39d1d202
-
SHA1
99e1a2de62f89b3e2c56fc3d7574107f14ac0dd5
-
SHA256
67d5a0aecf69e0e37cfc1fff8335b195c50834a3ca3b8470f708727b899b4b9c
-
SHA512
eb5f274151526df149afa8a5cd1f8ec9035079035b0414f28101c94b8dcea161e1abe2a198a14e830b76d4572232a81da649ad36453ce1c6b110f68caefaaaf9
-
SSDEEP
768:zAW8M9eBvcUab0f1lxzL0pmmI1MqcHjpHnSz+PITY0jvvoM6g/twR4RcYp:zBYB+b4/L0Uj4HRPMZrHbpp
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Resources\Data\info\tiedtimes.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5e6fe617fafcb34d719d172127e4a76fb
SHA1ad949d5680c9f9e017ebff1212b844db2819da4a
SHA256af60a27a1f1d25c9bb6814de86bdc23f8afc35a39b6ac7896020f11b251f6e77
SHA512354e7b081d7543897a912818efe9db6169d91ac3511eeff3942c34be28dad5322ef2bc97eb545e725754992608e0ed130bc3434b02635086e34a1e00a3d11df4