Overview

overview

3

Static

static

3

63ab9be549...18.pdf

windows7-x64

1

63ab9be549...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21-05-2024 14:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    63ab9be5494966521aec8a4b64e0ec8a_JaffaCakes118.pdf

  • Size

    49KB

  • MD5

    63ab9be5494966521aec8a4b64e0ec8a

  • SHA1

    f6cb617ec260b6c2ffdab69afd021d9b92a4fa3f

  • SHA256

    27e5ee0629ab099f169c3d0df23a2df212b1393cc241fc2cf2757f7b2795f52b

  • SHA512

    906f0082fb0b05602bd78f0060fe367a49cbc515091c57108f2af27e4b250689f73ca1659c95c3ef03286ac66c547b8e56eda29719679372827cab0e31edb6ac

  • SSDEEP

    1536:iXFZmGWSivnNi4/qUS5jBLcDkiDIVbT7sNIqhoKzCTl3Y:YysXB5WuKzSG

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\63ab9be5494966521aec8a4b64e0ec8a_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:328

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    abb7d0ee3aca1c2e57cc5b560a3fbd2a

    SHA1

    a63b7d5cfae61ac11afe730036de9ea2cf4e227c

    SHA256

    f75d6ae0f2c5921f22bf1398c0c51a901e2055595830e5580eaaa449b6959d79

    SHA512

    71701d2bb8f832349c4428a250678a000bd7cfa528c24f813e830eb8a22cc44faa273681c75bc6bb6e223c44f31e10c1caba78dcd4edb4caee17157585f6e404

    Download Submit