Overview

overview

3

Static

static

3

f6d581f275...18.pdf

windows7-x64

1

f6d581f275...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    17-04-2024 23:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f6d581f275a11e99f74d5faa9fbc957c_JaffaCakes118.pdf

  • Size

    48KB

  • MD5

    f6d581f275a11e99f74d5faa9fbc957c

  • SHA1

    d188fd6b1cbd4e641735d25a9c4f9757807da27f

  • SHA256

    0d853abc23302b6508bb6196b4e6c7bbca712efbe93396e0b99b9a52e2698948

  • SHA512

    243dee0efe0f8c4c3eaf6054de883e837885ef0a6b0e99ef77208e7b96defeb456f0f2de520c8fb267d5649a8825657d100388490ad3f82368faf108632ca280

  • SSDEEP

    768:1jut0eBffHWDfiWY8iVoivuFq3KqNbOKx0+rV+4hHVkczW8XPI2:a9f22WYTVt3K0bPxJr9HmsPz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f6d581f275a11e99f74d5faa9fbc957c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2888

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    881485cb0a5ce2ab41334b2a38f77114

    SHA1

    c157ee9fcbd8633b8f46272fd4ab9a3339b88e7c

    SHA256

    885e0bab4c3692d4d0b870bfc31354b6e3501fe0ab97d09bf6b60d7aff3faa01

    SHA512

    4f08549787720e1e9de1a7a188fb1f165a55f670bf848e02b1bb84825a780be723ba4e162fee0d5ca3fdd0032b171d60bc14abe6d4dd75b4d0424046d251734e

    Download Submit