Overview

overview

3

Static

static

3

6955ba52b6...18.pdf

windows7-x64

1

6955ba52b6...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    23-05-2024 01:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6955ba52b65089cb7337cc08c9330818_JaffaCakes118.pdf

  • Size

    36KB

  • MD5

    6955ba52b65089cb7337cc08c9330818

  • SHA1

    4c7d2f51bf75c862230b66d418de8862d92e0b0c

  • SHA256

    761fc906dd3097bde2c0548f984acec9e5307e75e0e8a3275f08f21cfbe3a815

  • SHA512

    83b02b96806be6b1654063c6ce37af33e7a34e3d47c7879a7bac19aac125d8991cce61ecd1be8d3d574e73536b70f100f363b3e5c06f88a34297585d8d3366b0

  • SSDEEP

    768:PXuMZmwgCLWarkE5HpxcOCoVH0Ui8sGAAqmTih/G/96VcFTOSBOXos4Fr:PXFZmGWSdjcOCoVH0Ui8sGAAqciY/icF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6955ba52b65089cb7337cc08c9330818_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2872

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    44cceb446544252123aa01a0362f8901

    SHA1

    0b031d992d2f194baa4190a93c52c39c7ed2bfca

    SHA256

    0af90d4714269c3a2f202237f97bf0bac0b256a7e7d9c975cbeb09649dc79532

    SHA512

    8616f94c0f180b92125559383843c21226a1b2a7e5063ae342a34ed8986f2f7798e5aaab522b483e57101d8972c3a11bbf394cc70c2794c5084409ecae5abca3

    Download Submit