Overview

overview

3

Static

static

3

6584d04415...18.pdf

windows7-x64

1

6584d04415...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 01:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6584d04415417726edb0846c5e432bc8_JaffaCakes118.pdf

  • Size

    42KB

  • MD5

    6584d04415417726edb0846c5e432bc8

  • SHA1

    1d8516bc05367725f9474f68c02db7e93e9170fc

  • SHA256

    4f3b22680bca5e0c1c701c0fc5299a3156a63f5541022fedb88250fc662c4807

  • SHA512

    0afd1aafb3d732691541cb4b5571dba682aa82eae60b7274b0ae07d2f9b8610091a8aa38ef57f6e09d2433b6e2f4d6961a093bd00c5833c3ac09d101735bda75

  • SSDEEP

    768:vXuMZmwgCLWarVE5HpuU/oZyiWoYPnJGc11RGH0bQi3J76m/nXMdWN9NBBubIi:vXFZmGWSG8U/oZyiW7PnJGc1vGHBi3Ja

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6584d04415417726edb0846c5e432bc8_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1636

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6f775b173f1921eaebbc2b669b5dd5dc

    SHA1

    dee79a8344eba3d41fecdba401dfcee2a3d678a4

    SHA256

    fe23bf6bcf7babbf7489f99bb37fac2af5a7d4076cf2aa1bbd2e6e606beccc17

    SHA512

    bfb88d13743677683b61e2cd95d80e936d614eadbf40992024ebfa8c605d368ed8824797fea300ad8a3a3174e5f0f2f30453ca9d364744dbab8179879757a2e2

    Download Submit