Overview

overview

3

Static

static

3

63e4518e0c...18.pdf

windows7-x64

1

63e4518e0c...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    21-05-2024 16:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    63e4518e0c1117f442c88c82af78c49e_JaffaCakes118.pdf

  • Size

    37KB

  • MD5

    63e4518e0c1117f442c88c82af78c49e

  • SHA1

    b356d799132595b1b5f6ac885291f12d9d0118dc

  • SHA256

    9d6cb2754ee0eb2c87574df7173e0120c2a4b903c4a8f0083f4b6277fd1dee3e

  • SHA512

    aeaa264ffcc74935e58630fde38a9d4ee8ba04e97a46c959a86b01f42a1b8b5ffc2de56275f1384b67b34ca7385137c53e4f9f54e7b7e24a945410e66ff36135

  • SSDEEP

    768:xXuMZmwgCLWarOO/lUydDmNMUj6JST3KTDb0xOx:xXFZmGWSLYnj6JSTaTDb7x

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\63e4518e0c1117f442c88c82af78c49e_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2128

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    fa3feb1e158a02878a51417c30f8194f

    SHA1

    38f2492437a0c48bf5981bcf2978156d83882ff2

    SHA256

    0fb4e4c23e8cc1d7db45b91bca15d225d83e4ffba30412847f2db356d7c9c5a8

    SHA512

    a8465ccd5835dd16b99ad913a4b661f76d11c702edff3a02e72533cdf77ab6b4da2e0a8a36fb3096adb28ee48d2f47feff0552580e0961fe88ec6b6c73d8aaed

    Download Submit