Overview

overview

3

Static

static

3

063e2506ef...18.pdf

windows7-x64

1

063e2506ef...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28-03-2024 13:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    063e2506efdcbbb46a61b82d60b7202b_JaffaCakes118.pdf

  • Size

    67KB

  • MD5

    063e2506efdcbbb46a61b82d60b7202b

  • SHA1

    b9c5d1a2ee5a4ff53345a4f4ffc38943e665c8c7

  • SHA256

    6d32564af07c023ad9569cc721f9794a811ac273e5aaec31100b0c482a36eecd

  • SHA512

    d9550ac3bba7b04ae03c0a794393094d028d694a38079bf1843ca284358037d6bca7e325c0a3f76501130e3b1aaa93f69a97615ed08ab8982df132a10340da98

  • SSDEEP

    1536:m3Ziqj8CpEQO+jZnlZJpKXoALIrV5VnRUXbhWOpOaZEWIBl71/S:wkQOCntpfALQjVWXbaaZUBl7s

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\063e2506efdcbbb46a61b82d60b7202b_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1948

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0cc36c9596cc527f89c935405ee17e2b

    SHA1

    1e8a8f3131a647c3d98e906665cf55e087cc4036

    SHA256

    b297916abf4f4e78ab88f8b4058e1f7c10b32ecd280bde4b9df39847ea093ef0

    SHA512

    ce965960649e93dca91b99eadea0478a659c8c33049afc4213de6f07e03a800a3d76511d26df76697768309f215223c7213a590d1bb49739f8dbbe318f9c6a91

    Download Submit