Overview

overview

3

Static

static

3

690871a465...18.pdf

windows7-x64

1

690871a465...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 23:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    690871a46592eb230d4ed36747cd06ec_JaffaCakes118.pdf

  • Size

    39KB

  • MD5

    690871a46592eb230d4ed36747cd06ec

  • SHA1

    a9d29501395f6c5b5bb6a25a1255fde38e97e3f6

  • SHA256

    384dab4b7e9eb70a1316502ee1c6524269ea1f043364cb5839a3f867c051e673

  • SHA512

    86c934013740effefca39bdb1c83017e5da0842da04e94ff9bca4f32ba699ec345378cd6bd02baa852c420e529f8492b4d870b61e47627e4673cb8c05f4317da

  • SSDEEP

    768:J6owklLEhc7AOjnlMIqh5i9rBR5X0PcHkiyWe3A159YVKsgkpr8za19Yp0G4sXv2:q6uvO7lMIqh5i9rBR5X0PcHkiy73A15U

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\690871a46592eb230d4ed36747cd06ec_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2136

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9e940410f4dbfde3fd4d043a3cecff70

    SHA1

    4317b59a9be4edfafd58479da4aab543ee31ef3a

    SHA256

    b4200928f7decfc372dff94c432803f1c6c35e6a9c73ed39ab14e5eae677596a

    SHA512

    192bc1bd1039d00174fc1752de35ff7c93968e95c7c13345f9a73f27e272f16aa0d805af7444dffa7c5f059a7a8d81a6239d9304953ad5b38c75aa1e11c2edda

    Download Submit