Overview

overview

3

Static

static

3

f6de0d23fe...18.pdf

windows7-x64

1

f6de0d23fe...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18-04-2024 00:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f6de0d23feae5cb8205037800fce1fa0_JaffaCakes118.pdf

  • Size

    68KB

  • MD5

    f6de0d23feae5cb8205037800fce1fa0

  • SHA1

    4086c48b16b091dcba9f1deb9e70bf74e3898a58

  • SHA256

    6f846508f908f917a25ef4f427534d008797cedb328cdbf4dff29c5061416d59

  • SHA512

    debd19d9c154b13aa1fce43533a3655dad42bc5c4d8317604ab8d640ef28514c9071a84405cb435f72d3f3bd86965f0d53ff0d778b092b8491ba75f47a3dac05

  • SSDEEP

    1536:E7g35uLyH/zix193baOM9yuvszPUcTWet8MR1saOD3o8IZWbpONX/P:KM5q0zW1lbYMuvsLp5hNq35IbNH

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f6de0d23feae5cb8205037800fce1fa0_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2680

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e83d8e373298e0b5e0dd3abaed84cd6b

    SHA1

    d40c523d8847fe300b1d5d726207dd0f5382e438

    SHA256

    8e602ebcf56001cc5f95981d0775aa017a1a39c0642292be416d0ca43bb67afe

    SHA512

    bbb63d2d6e47be6fe067aa75224f5c099b94e73f06829a324a8eefacb4f1b9c92aa8d70df1ca2b2a79d6c7c65a4050168043da80f813ec21c953356e23374088

    Download Submit