Overview

overview

6

Static

static

6

5ba8b55836...18.pdf

windows7-x64

1

5ba8b55836...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    19-05-2024 21:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5ba8b55836ddf533613a7ec700cea66d_JaffaCakes118.pdf

  • Size

    7KB

  • MD5

    5ba8b55836ddf533613a7ec700cea66d

  • SHA1

    98d6b876e0607bc80de3d9627e9388f727944161

  • SHA256

    10d629f275e77bf1de491c5728ba08b1a14ae5b86fcb0369a07744dfdc475fed

  • SHA512

    62accd22b1ae9190ac647378ec0193cc06370716dd37d5ef427a1d83f2c60c034e76635ab3b38025cdc095ae6d2fb0935e8bc39c5f7c7bf36712420400e261be

  • SSDEEP

    96:OrggNYwtszjWRmqaVvjOfit+yLiPCh6B+0G4dIcM2tQDIlQ+OWy8Uef:3mqa8vCChulfM8SgQ+OWy3W

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5ba8b55836ddf533613a7ec700cea66d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2132

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1571b60baa359e39060c2071069bfa34

    SHA1

    626cd0a92cd507a9ee4cba6caee4300d408cf48d

    SHA256

    c3fabcb06f3c2405afba780362fcdbc0b5974eed4419a2ade4480fe418bf5d81

    SHA512

    04766b8f6b1ac4d708287ea5e2152f7bd16cffa0d9dad58983102b5c61388230d3a1b99a8aa762098962ebb94c0c91ec61c49bd869d3cab520970080f353974b

    Download Submit