Overview

overview

3

Static

static

3

d69d6ff6b7...18.pdf

windows7-x64

1

d69d6ff6b7...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05-04-2024 14:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d69d6ff6b78570bdd7f3131e421d2d70_JaffaCakes118.pdf

  • Size

    90KB

  • MD5

    d69d6ff6b78570bdd7f3131e421d2d70

  • SHA1

    1a3fe48e7f57fca35126ef33bb724af82d7c8d7a

  • SHA256

    9993139708bf265b067c263af41244e210e05ffa29d9baf9a93d14f629b27f09

  • SHA512

    8c0d0fc770cf0406e3b1f286432b9a04e5564c729edc64cd0cf364c35b09a18ba68301799c5c1c4506df9e852b411929721ec12147032d44417005b6edebe0a3

  • SSDEEP

    1536:oboodFSqxlZu8y20lL4TN5WrMVmaQCYOWG9WOpOwrKWhrefPV7uTUntFtQG/4Y:so0xlI8ypL4TN5WrMVdQpO8wrv6t78Ub

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d69d6ff6b78570bdd7f3131e421d2d70_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2124

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    529bb055fdb3df5c26a06aa645a2f213

    SHA1

    32a5b7bca0f40d87a99e3aaba7d203452ddc4ea2

    SHA256

    6894426a43012b460945daafe63eb3f5246165d23c96a1c885bbfde0c0f565ff

    SHA512

    638cbb46ee3a83355ecac7b5f5415d334dbb16d5ec1d67a1d644dc0863eaeafb9f12c3d6cc9f01ef401b1ba1dc78df0efcd12b61ca8c14ea93e75754a1ac1f4f

    Download Submit