Overview

overview

3

Static

static

3

f6e05b4bc4...18.pdf

windows7-x64

1

f6e05b4bc4...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240319-en
  • resource tags

    arch:x64arch:x86image:win7-20240319-enlocale:en-usos:windows7-x64system
  • submitted
    18-04-2024 00:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f6e05b4bc4dca827987b089fe2591512_JaffaCakes118.pdf

  • Size

    67KB

  • MD5

    f6e05b4bc4dca827987b089fe2591512

  • SHA1

    29689569bd5a1cb6fccc5a824eb31c4103b7b8b2

  • SHA256

    e3668fd8c5b30761d690c21ef6c858152ef6d295e5199f21b4a7234ea1b20c8f

  • SHA512

    8332f1c96ddaaf6afbf00b2212126c9e4b473b0a8c5107f3d7f426a7a8dbab5ad1d598120f835829009a164a9d94e01dc26cf5eebaa5d1fcf9078915f96db81b

  • SSDEEP

    1536:Igzq6qzQf9JxLT+KihVYKZOmSqVFCeDG0TdReHr:+3atLKFVYdqOeDbjE

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f6e05b4bc4dca827987b089fe2591512_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2980

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c2dda913bf89141a56656ce89dbae910

    SHA1

    bec40707eda90d76543b7d0fae4f3762bdca0a98

    SHA256

    1e83f9e5d61ff964706769d3294d4fdce81ccd61796ad5eea916bfe25f921b7a

    SHA512

    dc0249b0be39d5b8dcbe9ca317a05938800ac5e5f66cde2da6050f69e853df5a53b64ed81aebcc8b6a38e61c715cc4eeab10249922948dfae19e6f7fb54c34b9

    Download Submit