Overview

overview

3

Static

static

3

678fe0dd15...18.pdf

windows7-x64

1

678fe0dd15...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 14:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    678fe0dd159299d75399ff7a509cdc9c_JaffaCakes118.pdf

  • Size

    37KB

  • MD5

    678fe0dd159299d75399ff7a509cdc9c

  • SHA1

    fe5fc048a00319e0c2031bcbfe428806b843f648

  • SHA256

    56e049e85213bad361b7dc8c1f1eb92350f1e7d7d9872f824b56a328b1752f26

  • SHA512

    8914f63f0f5e2de080907e87ce0d756b41805906407f499068559b8376e3c49fcbdd2e3fe182e128d4fbb41cf4035f1710805443e6d2da9c9c7326f9dc6fdc6b

  • SSDEEP

    768:exT+OBblDCviMnl5QlSIshg94BRqXAP5HkPyg3Q1CamW1JL2HE5RXuMZmwgCLWaA:exfllCjl5QlSIshg94BRqXAP5HkPyg31

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\678fe0dd159299d75399ff7a509cdc9c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2292

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a9515daa5ed72c040ad1d3a1ccd983e4

    SHA1

    d3bacbba3376835b31fd4502a23e4ea36664c65c

    SHA256

    591074c510998a613b97b75e3b4fedb15ec87b88baf7843e1207a1784961e135

    SHA512

    9c4d53f621dba51ca66e5ae57ab6aec4c20def3219657084785d1836555d7952b739e05ab1bce2f80d8ff4d4d75322aa6cec6cf3310486c7d7a0108fbaa620d5

    Download Submit