Overview

overview

3

Static

static

3

c9716d7a6a...18.pdf

windows7-x64

1

c9716d7a6a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05/04/2024, 03:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c9716d7a6a16e71bd2491c4a6753c1bb_JaffaCakes118.pdf

  • Size

    88KB

  • MD5

    c9716d7a6a16e71bd2491c4a6753c1bb

  • SHA1

    7a5b7869c912b3151a0897f4a39939038a6d2a67

  • SHA256

    33f828d5e3404ec962f585aa0253d94f8db23fa3e8538c2c8bd733fad12671fe

  • SHA512

    231e570feab151c9462d0b8d8d451f281b8b9edcfb2bc041a91b960530fd60a727cdba711eddbab78b8902b390552ae54d798b1b235ff655557ebbdfc78e6acf

  • SSDEEP

    1536:xuaTg/W6Oc8WLc0Kcl+uGyy7+i5Gp7sMZW3Xua5aUX6jJX+u4WspORV/oN0Y:g4gOhql+uZm+i5e7sMzUaM6luuTRJod

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c9716d7a6a16e71bd2491c4a6753c1bb_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2460

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ecc68d79e3a8bf64849d0ff96a6416f7

    SHA1

    68db28b6c2b1bde6c61354ae949c2ea987ba19c1

    SHA256

    d9a0590c1d2e00c936950563c3fb74a52d26d2e8e03136cf93ed650d13c8856a

    SHA512

    47953bd814a045ee149c01eafc6ee82b501be94f21ef3394685f5018c75ae72dda4fe9b27b9a10e58b5cbedbc88ae7b42d04a43914d2aa58a66d09143f631d3b

    Download Submit