Overview

overview

3

Static

static

3

691ffe450a...18.pdf

windows7-x64

1

691ffe450a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    23-05-2024 00:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    691ffe450a91742c55bfacda4d3fe562_JaffaCakes118.pdf

  • Size

    41KB

  • MD5

    691ffe450a91742c55bfacda4d3fe562

  • SHA1

    032cc35a5a5942572bbe2edbe1c7091ad7c2afdb

  • SHA256

    1078cd8dc3b9ad5e74f75c1c630feac13dc7c3ee98e0ce9daaca2774c261ad61

  • SHA512

    185f670e0f74fb53d75c4e8644284e23d3374e3fc18604ff082eb41b5a3343c321b34beaac1479c38746d80506fdbe5bcf2c618edf72294ce04fdaaf26020932

  • SSDEEP

    768:xgGzpDGpBq8mOzWXncQZWSa2txOGk/NkrA0VLh7BMQa3hJ:CGF6pDSa2txOGSIh7+3hJ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\691ffe450a91742c55bfacda4d3fe562_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1312

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    49571908be1944b1974dab823b2adbab

    SHA1

    8135f7dc5353659c3aafdca3af3c3a6002edeac2

    SHA256

    0ca3515cb3b043844ff9c391276b0bb5401926dee13d6c8a4a41edf71c29e912

    SHA512

    85f04c6767198c7697b48bcb6cf223f35e8aa9fa136d17fb851d6cb42f38edb2fa5667de442719983f130f20048b577b2e06feb97e08185e9af74abe640fce6f

    Download Submit