Overview

overview

3

Static

static

3

c6757cce6e...18.pdf

windows7-x64

1

c6757cce6e...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05/04/2024, 00:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c6757cce6e874ab891fcf54dac1346dc_JaffaCakes118.pdf

  • Size

    45KB

  • MD5

    c6757cce6e874ab891fcf54dac1346dc

  • SHA1

    facc32d4c3c2a9388137a19edd0ff461346ce549

  • SHA256

    44ab1ee002ee6082fc22a7a0ed652e16d99b5aa539d19f36251c7f40ca94ddfb

  • SHA512

    733a88bee8cce6d6b70bc05b635b985b2c7ecc6dfe20f59b09b4e8b739477b08af0d81c1efd108099fb2d98fd7a998d569c0e1aec6d6baa1d3b4d8c2d33b166e

  • SSDEEP

    768:eL/YYW3sveH5jjV+0q/ucoqUTrm7cFzjBdII4va5o3PaZjIClF:edCsGZPV+/ucxUXVFzjByva8+EClF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c6757cce6e874ab891fcf54dac1346dc_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1848

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    dbe57d05735dd94ddcec3600c415d9ec

    SHA1

    c52d71e6ddb261e0ec4338135f677aede7f7c4d3

    SHA256

    dff359fa4cbbaef643b5670040474d672409cdec93150154211bb33c00777f6d

    SHA512

    5e695833f3d8d89586c3ed0e1b04e53358b5857772d557dfd694820f968f880112ad1bb5a2e9369cd1f1af05f636302da5892e2d0cba1681112c6a5c29bf4778

    Download Submit