Overview

overview

3

Static

static

3

64b5b2314b...18.pdf

windows7-x64

1

64b5b2314b...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21-05-2024 20:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    64b5b2314be3d105ed22c4fe294cd0dc_JaffaCakes118.pdf

  • Size

    34KB

  • MD5

    64b5b2314be3d105ed22c4fe294cd0dc

  • SHA1

    88cab7f3502aef3733228b9fa22174ca6aba2c2a

  • SHA256

    f94dbe957f8eb7e9d03a0a19af700ed82d0a2f9c5070cc99e52dd7af94e32468

  • SHA512

    9c2741fd8a3f4f0cefa7246a96f7724c6e6078aeb526010f76920596c06a7dcbf45b441c4f61635175b27a10fa333a69f7164a191156e4c18a3829e02bc822f5

  • SSDEEP

    768:kkJYJOYDBeOWbeSBi4pRbq/TPW3HROMhkal71HJuEBVUOrBTU/plOlNIlh19oLEA:k+oDBeOWbeSBrqb+3HROMhkal71HJuEx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\64b5b2314be3d105ed22c4fe294cd0dc_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2268

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a4395d6f597cdeb30e0284d658533d82

    SHA1

    829b43eee38fa25925d55b2ebfed1f49593447a5

    SHA256

    e7e8d4ab371465ce654ff5881ecf48d6dc3154dd3fa2a4bc58e2820b6be6370b

    SHA512

    9069ebf5926dc8be590667f13e7b7960a38e72f41289ccb97e962b9256ffacfe09a2b7b1697ab0c52e7a552c4f551ad7a7f2d9309b22dab4f71ba22f3b40948d

    Download Submit