Overview

overview

3

Static

static

3

6586b4fce3...18.pdf

windows7-x64

1

6586b4fce3...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 01:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6586b4fce3f69612e0147a5cd12fc92d_JaffaCakes118.pdf

  • Size

    37KB

  • MD5

    6586b4fce3f69612e0147a5cd12fc92d

  • SHA1

    4d2a92cfc81e23aa8a341b3d80803a3c7e0faaf8

  • SHA256

    81e894e9cd2b6aa30ae4b7576135c5e4f40821fe764a571e2dddd6983924a872

  • SHA512

    29554341cf2a1b622be9c7918777ee2f6a19ce55e1932f63db167c5b2f3b1515cd4080bad0dff32a3c3f1ae2e627fedade8570ba29628bfe4a218a7bd0c9c662

  • SSDEEP

    768:ogGzpD7prOJRuwT1x4VzBGuJtTK/1WIZZVf/DSXXkv+EbeTRFmMCM9:lGF3pRJRK/1qX0v+EbeTbmMJ9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6586b4fce3f69612e0147a5cd12fc92d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2452

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0aaee903f9616b2e753a88784a1c0c0b

    SHA1

    23294917c75f38a50e42889567d7469d5ada2dec

    SHA256

    49721ce4cb1adc3772609029eb3cfe9b12f32814ebb46861b3bca30586b9ba10

    SHA512

    f084059ffd6750db549425c8e5c908ef6ee731f6e6bb081d7daf05b2cdb531e393a30aa2ef9bca2966647de1a077f0f287b0f7930a832b309060f7eaae5ccacd

    Download Submit