Analysis
-
max time kernel
74s -
max time network
18s -
platform
windows7_x64 -
resource
win7-20250207-en -
resource tags
-
submitted
28/03/2025, 15:47
General
-
Target
Cv LARAISSE Hiba (1).pdf
-
Size
686KB
-
MD5
73e7f7afc2f622d0e88764fe9116cc24
-
SHA1
920294f6ffa9eb6d56b3ee59d041b8d08ca40849
-
SHA256
06499bbe658d9fa292c9e3772b047182792566ff37082f8bc3b66e7b827cb1f8
-
SHA512
f16cd7ae7b077f0d8f00f100f15f4d229e6cf493b7990f10b348814548315db0cd9e5ac39e65547bb851f4a0baa4e3347cba4c799748619a9d6ac706b52731f4
-
SSDEEP
12288:KVhnq/Mc+RcOKSnxOYErz45VVLL1c+zjW4Z19EXqfHzLSYu:s3fRcPSnoarLL1Dzj9Z19kAX0
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Cv LARAISSE Hiba (1).pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5234882c08d4298ae0b9bafc4b5aa86d0
SHA1816d0843dab3cb3cd79dbccb3e9281e566b87501
SHA25680ff0e8f711c2d9819c6fb69328bb0ea3874ee0c720c72d61285905d91d4d8d4
SHA512230573be56894f1f02df339d5eac900348eb0d249c99fbfadeff89f622a4529a153db1ca8bb91f7e19a8da4ff2c06622b993f7f359ac8bfa481cab6d8cab1563