Overview

overview

3

Static

static

3

6907b8491b...18.pdf

windows7-x64

1

6907b8491b...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 23:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6907b8491b67300c190bfdf968f81780_JaffaCakes118.pdf

  • Size

    40KB

  • MD5

    6907b8491b67300c190bfdf968f81780

  • SHA1

    f1967e3cc04dd773790da3b85815a01a885313f2

  • SHA256

    1e6c36158728ddb36ac14272490e5c6f4fa86d19b457b2c1abcc4e768248061f

  • SHA512

    3546433b726ebb917226b42a68fbae3f17f677d2a89e006e2250d7399564b48594c17cc3ea485a949db2ed9f72760d2818a3ec838bd37b31f37bcfb5820169ec

  • SSDEEP

    768:/XuMZmwgCLWarmidqJkk2fsGRb+KJ2Y+tjO71hWGBh2U3d0sZd:/XFZmGWShqJkkU0LCRhWa2ypZd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6907b8491b67300c190bfdf968f81780_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2808

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c0c892aece34d4379fba3c370313abbb

    SHA1

    bb4c5102c3e1781da890912bab619e670e682118

    SHA256

    60a2869e0c377b6414de6010968171c3d334906c1b6ac7639b57b8c3b81c0041

    SHA512

    eddcda9c1639c9e5bc57b9128321fa17f72e327f86885c20afda3274b4aad08a77bbbda70880c4a7408ed29fb1a996e1b05ca20a2e0642b91422a8b9a8d2b235

    Download Submit