Overview

overview

3

Static

static

3

60201489a5...18.pdf

windows7-x64

1

60201489a5...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    20/05/2024, 16:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    60201489a56961b6cf0df23a1bdad764_JaffaCakes118.pdf

  • Size

    188KB

  • MD5

    60201489a56961b6cf0df23a1bdad764

  • SHA1

    b346ff7d7d885d63cb9ddc6d83692ea6197a7ad8

  • SHA256

    cf695e34109fb00198cdaee81c142dc6bdb790141912c4f360f46eefed4b94e3

  • SHA512

    0203073274ba969d995f4be837234c6b85e0a066602d980e6982885e28c41069199bc5b8d956ba69296d90817bc19d180102137f504c44323a83e1b03d1fd988

  • SSDEEP

    3072:K2irbxzGAFYDMxud7fKg3dXVmbOn5uO6KjnHcyNTuYm6Go8yvJNmw5b6L4SB:K2MKlWQ7Sg3d4bOndNato8yBq

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\60201489a56961b6cf0df23a1bdad764_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2768

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    991b670095f84b3a8008640d150b5bb0

    SHA1

    cd456e500e27738230af6892b9764547578b060e

    SHA256

    d5236fd4cbfbf605c5681a68091de6afb277740753b7a356ea92f98999317ffb

    SHA512

    6c08d24a043b1239a7f397c424c4c19eceebc9cefd4e2efde9b254ff2398caa0772e5d6ec566e7f006d10d5916d14cd02256d3abe4396ac8ba0ee18d47848088

    Download Submit