Overview

overview

3

Static

static

3

c69b83324c...18.pdf

windows7-x64

1

c69b83324c...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05-04-2024 01:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c69b83324c1d90d6ad691fd445b48897_JaffaCakes118.pdf

  • Size

    81KB

  • MD5

    c69b83324c1d90d6ad691fd445b48897

  • SHA1

    000859de79d127e68ae012eefcd591984411b6d6

  • SHA256

    6d3bfeee8eab11518605086c1f00e6b9b5633ecbbb29272c817d1fa824d553ee

  • SHA512

    65830f6907d1699dec02c97908396a71b5324b4456ef1121ae02cc25b44da240c242de79a4c9a4f362315d7f0ba810997e2efd6d5d23be577f9e913b41e5fe1d

  • SSDEEP

    1536:tXvTRGli+yR9YZr2EL09qYWd+QHP0iSRjjxW5yCPkr:XGc+SSVgod+QZSVxWsCc

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c69b83324c1d90d6ad691fd445b48897_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1880

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    670923549d91c9ae66237e29ed34d18c

    SHA1

    448fdd959d5233fd980c381ee90010a1d2014554

    SHA256

    1e0657a6d65749bbb312f7ba8c4a57f53afbaa52d028e796164614b722878ce4

    SHA512

    5fe42b03eccffdcf87590b5b8d20153d5cb6464d6bc0d044b7cfe6568377fc63478e7046ae88faf03a8f853a258ffbc34a91f224fc24b9b5f8be1c823abf3092

    Download Submit