Overview

overview

3

Static

static

3

6586a7b9fa...18.pdf

windows7-x64

1

6586a7b9fa...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 01:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6586a7b9fac25ae2603003f84cfbc452_JaffaCakes118.pdf

  • Size

    73KB

  • MD5

    6586a7b9fac25ae2603003f84cfbc452

  • SHA1

    255399b6fda002f5dcc0769b960c8059af88b402

  • SHA256

    4516f7ebfd0d84410cc52d9e067fc8f367329e3653c59b85ea0cfe93bcdc4878

  • SHA512

    e043c1b3be3a0c0b2d9a45ef708fffaedc9e429372f86f0b060359e19fb5a5bd401560171b87bbc39ef6b29641fa5973e8d740f2d5d9f361a77a8b5f2283a421

  • SSDEEP

    1536:5GFmS0vKrHYJXODofg785n0WMd6nasfSY389Pvh:MFmHxV9g786X6asft389R

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6586a7b9fac25ae2603003f84cfbc452_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2932

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    01e9a5edb51fa330209c92cf973b24e3

    SHA1

    906a59267784173028420c7a304510d106f48663

    SHA256

    41f1ed058f78e0e31174894fbe6c01c595dd9fd194d9017701fb649b680e3875

    SHA512

    e7e557c5f44124c8a8317b3fa8d5f18ded897b18bad85214a7931d41e7fa96240d8c8a666bf1c99fd927acd2bb9b9ef9c0fe4de3534cf08a8acd16814f0d10fb

    Download Submit