Overview

overview

3

Static

static

3

f630ea4bc6...18.pdf

windows7-x64

1

f630ea4bc6...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    17/04/2024, 16:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f630ea4bc6817ea6ef4c2ad7db4baa32_JaffaCakes118.pdf

  • Size

    83KB

  • MD5

    f630ea4bc6817ea6ef4c2ad7db4baa32

  • SHA1

    70ea10bdc2b0f2c19d3dc577d5ee18c925d01128

  • SHA256

    fc78bedd468249bd6785acd8442881ef876a709aa3ae3d91b7f7cf30c24f0b04

  • SHA512

    cc22801c4a2fb7ff9e5f014d51a777e4ab72ae85a0861106f694754d6165e2568002ce3756f553ba36c4b28e7175d0ac94423bc0e0cc11731f3a1cb1c8544f65

  • SSDEEP

    1536:NeVNuU0CtCLbGlTKvT33p/UHuLUp+A/RERWaSdZCAJcWVnkDybc11nLuOYcWQpO8:4fuU0+N2THWHuLC+A/mWvZC81kDz11LJ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f630ea4bc6817ea6ef4c2ad7db4baa32_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:352

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    362dfffb7f010fe304fe22a1b3270b39

    SHA1

    6cca45a74fcfe0ad3e21fdb5303fb40fa42f8dcc

    SHA256

    782f5287180200cb8b9b63230b23df9be8ef850be83d5706fb521b097d08264f

    SHA512

    6a84023ceda8031188f3ab80b78e463599392fa05fe6e3b39e83aaa848c3017a27001ac524f0df988edcd7ba537e4a1f2b7ab5f266147f426d523d8843c7c49a

    Download Submit