Overview

overview

3

Static

static

3

06a1c31928...18.pdf

windows7-x64

1

06a1c31928...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/04/2024, 02:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    06a1c31928f6b4c6b285ebafa003112e_JaffaCakes118.pdf

  • Size

    39KB

  • MD5

    06a1c31928f6b4c6b285ebafa003112e

  • SHA1

    d400b8a2ee47bb1d70644932a4c2df1e86c334a6

  • SHA256

    27abf7460c34cf7b7e4210e03a99ebde4415e6438b757934bb6f6fc1adb69c87

  • SHA512

    cb8c8eb952c187981d24ae59dc1996585e94bb28b8ef81cec9ee5a33ab23ac0360366ccb966788154781b52c86abde62d9afa46dc62cc35fd99e70a00259f13c

  • SSDEEP

    768:GgGzpDfQD5eZvqnA8wv0iEMtI2pAxcm/mKa+UG2YZCn:TGFrY2pAum/1a+UIZCn

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\06a1c31928f6b4c6b285ebafa003112e_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2180

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    968433acc0ffbd13f8f5c8c9dd183622

    SHA1

    cd1c66db5039081404d6e8988506aed1530201e6

    SHA256

    e0f292389834c3ccf5daee3036ad3b57077c747711fadaa85fdd64f1e0dcf366

    SHA512

    0f225a2a35e102b12978f4ad8435f27c18ee5a9f5a4f9b6298e2b3b116f590fe994418e50cc41f83d7b1aaf075427dd2e9f39fb20b2f4f4c2cc0fc265e11610b

    Download Submit