Overview

overview

3

Static

static

3

6120d2bf05...18.pdf

windows7-x64

1

6120d2bf05...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    20-05-2024 22:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6120d2bf05100fadc237e1dfd5d1194c_JaffaCakes118.pdf

  • Size

    186KB

  • MD5

    6120d2bf05100fadc237e1dfd5d1194c

  • SHA1

    0740335a524c69d516ea8c2cbe19336c39a363d1

  • SHA256

    3e65eed2a86e238f82888997b5e761697fa798d479a9dc3b8254c53739033f3d

  • SHA512

    5a492a4ce1ca3d52c0e44cbad11173380c309a584e30cc82d83efd8802456cf3ab295c5e36477d41612365299a638c7eb786dbf92745b5c454c7590461aa3fc7

  • SSDEEP

    3072:82irbxzGAFYDMxud7fKg3dXVmbOn5u46KjnHibsD8BxwWEygl2jYPSD:82MKlWQ7Sg3d4bOpOsDEjYm

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6120d2bf05100fadc237e1dfd5d1194c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2396

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    43789698dbee93c62d6ab463fe59eb0b

    SHA1

    594eb9647c5c1722d54196dd2393bee47901b229

    SHA256

    c4e74de32c3295a9a48bb85b4f862ccb52d6fd8d16296b829a7d5563a2d9cc71

    SHA512

    593671e5f4637c8692388263e6a1195d39f7b2583ef40e367b19a24d833cc8daee668b54aaec31ee20fcee214d4db9b963e7988dc4b87c8068ec875e39bdab42

    Download Submit