Overview

overview

3

Static

static

3

60426865f0...18.pdf

windows7-x64

1

60426865f0...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    20-05-2024 17:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    60426865f08608c302576e54c7631af0_JaffaCakes118.pdf

  • Size

    186KB

  • MD5

    60426865f08608c302576e54c7631af0

  • SHA1

    0b1d0761956c22baae69fce22acefffd61693f4f

  • SHA256

    4ad66257712c5f8788796915f2b88f896289dbd2a9499e0a8cda184cb7fe279d

  • SHA512

    05ae3e23dde6eee25554b5c49a9a71891e6ff819902e3e24785f9337e349dc91802c0f5be0be49c9107e0e638f6f8052f5f66f6095eca4b22733bfc133bd45a8

  • SSDEEP

    3072:q2irbxzGAFYDMxud7fKg3dXVmbOn5uy6Kjnxo4FTRZk8u7G0Z9OpaVrSc:q2MKlWQ7Sg3d4bOvm+gD3OwT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\60426865f08608c302576e54c7631af0_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2384

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6c06310696f6322d123301c7b5d73fc0

    SHA1

    c861cdc9c71dfacffde02dd941216372c4c5a987

    SHA256

    5c927365a51320298edefb93c7bfc470767ac1deedbe600ceb9dcd020bb606da

    SHA512

    0621d4b5528dac038c54b1f2a929212ca04ed51ff6963c1eeeb75958fab0ee8df33f1e568634518dff6340d386b633ca7a506bf1f549e418fe6ad3b7f79ff8df

    Download Submit