Overview

overview

3

Static

static

3

657c708010...18.pdf

windows7-x64

1

657c708010...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 01:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    657c708010b890a2df82648541b40257_JaffaCakes118.pdf

  • Size

    169KB

  • MD5

    657c708010b890a2df82648541b40257

  • SHA1

    a44818d12f5f58f424e6e3c4499f3bb1710bf83a

  • SHA256

    3719585fd6ea9c103fee7b710e237eca48fe10983e156b6b17d24f94ac8fe564

  • SHA512

    e69bac1ba23972f74c2df45154d3bfaf5c0a7fe4f9d7ddf404ecc22734a087000f6b2d3f8ea9266916a9b946c7ac59f899567df6a03bc9bd1178601bf91b7e65

  • SSDEEP

    3072:qysiok5HzYuxwhSrzliZw46Ty1pBjldYgeIOVtjpi7W019TOjGwlKKBGC36Pxu:VTY5hwzl94VBjnYg6tuWzqwnBTAE

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\657c708010b890a2df82648541b40257_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2236

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    75d2f717304bd61f3a089eaf4fb7c38f

    SHA1

    42106e793e44aea7a57afc34409cf11e7638e9fd

    SHA256

    a6c6896ca1e1e4b7e9b1d8385776fe7de849a24a186f34e928b9c3a485b5a724

    SHA512

    49b6877fd694d6b3519210edfac601cd5f2352b2fb1936495c8e943b164c7667343b53490005aa7b7dab8ca3021b1d488337d431fcd24455e19c20f4c5f52314

    Download Submit