Overview

overview

3

Static

static

3

6935454652...18.pdf

windows7-x64

1

6935454652...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    23-05-2024 00:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6935454652ba7e0bfa02f859fb12e9c6_JaffaCakes118.pdf

  • Size

    89KB

  • MD5

    6935454652ba7e0bfa02f859fb12e9c6

  • SHA1

    1b92632ef96376deda86d721783eb43658ddcd8c

  • SHA256

    718d9c593a4b32f90904a2d050adf6b7db5bf0f321dd0b8c267d2076cb3c7342

  • SHA512

    47c40061fed68ec2bbdc565df76d3470e2719c495bedb6039f082704e38ea222bbb8ef1c8abf65e261d735c6da46d1f037f0f6eb41072282a64e387ed0285429

  • SSDEEP

    1536:mJGzPXR35KjeRDaruiYcpSbSU7WyNEFUjug7sPvZkNPAKfC2jYcGX1Kbqx0spT3L:YIh35KoWiizpS+UCyNEFUhsPvZkNPY31

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6935454652ba7e0bfa02f859fb12e9c6_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2964

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    deb5b04b10a767c49b6007378dc6bdae

    SHA1

    fea5e37239b74953af5bd6eaba0038d9d108ca1f

    SHA256

    46329e21b6808548054d869a66821584419c7ac3049ed6ce9075fae20a46a750

    SHA512

    136a296d6c76896077e3f04b71b5e133794c97770038a3e522bdc8b8da1f03777be131b3049011dea1c6eb7fba6e944797691c3e5a82d359ad6186caa96b7207

    Download Submit