Overview

overview

6

Static

static

6

5a879cc71c...18.pdf

windows7-x64

1

5a879cc71c...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19-05-2024 17:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5a879cc71c2fa58005fbdf19897060e2_JaffaCakes118.pdf

  • Size

    16KB

  • MD5

    5a879cc71c2fa58005fbdf19897060e2

  • SHA1

    ed2cb8d6de789f852a81317974db11a21e71c2f7

  • SHA256

    a9a31cf9756a0a43442e881b7d4a92a3e6b3c3ff5349a1a596d5eda11b868940

  • SHA512

    c1ed53d3f346d236058921fce8f2513f46f7aae9886133ff8fa53824b0f967ff7c5d415e689fef5f22ce7bd1bcd24100f62e262cb1e3c7dc1fb616816893a051

  • SSDEEP

    384:Ou+eCAsiFexs9cvzFTT3G1NiEESSrrD6Zowv/0M9ZB:lsipSvzFO1aPD6ZowH0W3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5a879cc71c2fa58005fbdf19897060e2_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2880

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a5f1c2d3863a9405104c4f4848578f41

    SHA1

    1a01d3cf61a9d8965a8e46c843c73178efae9170

    SHA256

    63976b4910310d278dc12b823d22ee72d59cd11091bf470a55294d6e09c9ca11

    SHA512

    a15086c8f85e7659860d4130188564fa98734d99c2f3f8b61e0ba846be887b3adf7584f9d72dc4069274e6849e4f3b2c81034a07b0d9870ad67255e20cca67a4

    Download Submit