Overview

overview

3

Static

static

3

c6000eac69...18.pdf

windows7-x64

1

c6000eac69...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05/04/2024, 00:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c6000eac690b796bad4cee9e2b5642cf_JaffaCakes118.pdf

  • Size

    77KB

  • MD5

    c6000eac690b796bad4cee9e2b5642cf

  • SHA1

    9ed9c43a905bb05866c9fe2fe12ffbbc9c9862ce

  • SHA256

    7b183374b26b53ed955cebc98cf89f0c470aec0199fa3d78a78f981bd7ffdc40

  • SHA512

    c51c814968d3cc8ba3d1e0e1f0172d40ed3a61e9a9b2072763f1bcf14bb8056c0c651940a74b1825fe17b3b5aa55ff2fbcd83478e4c73279af6b17baf4ae901c

  • SSDEEP

    1536:owqRRNy3I1wBMQjmUTUt+4a418XHjVZ26WoRXy8RGWspO22+X:4dy4YtjmUTUI4l1EjT2GRXDRl2t

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c6000eac690b796bad4cee9e2b5642cf_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3020

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f4fd8160a4f9b1623181d0767f06aee5

    SHA1

    fdf7d4c66fa34648b447a4d0c2c0772f134347f8

    SHA256

    6dc2c9d02c5e89dcd82efb3f9b79de0a37274f8f3d36245067e79a779fd7d951

    SHA512

    5ac53f8832b9c8bdcaa59b5fb584f0bc6a6afc688959c6d106ab836ead9fab4db14dc9d38746d0e4bf1b4732c7f1f5874c6f9d36072d3425f9aae02c89240cb9

    Download Submit