Overview

overview

3

Static

static

3

6939f2e1f1...18.pdf

windows7-x64

1

6939f2e1f1...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    23-05-2024 01:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6939f2e1f14d51aa6d6bdf268bc458a5_JaffaCakes118.pdf

  • Size

    48KB

  • MD5

    6939f2e1f14d51aa6d6bdf268bc458a5

  • SHA1

    4542e150564d58698d07b4d115ec73264fda7eec

  • SHA256

    dccdb9f40f7067ea9677708ae77183efbaa12ea8dee19bd3908a14a3490b93c3

  • SHA512

    7e840c2512887d91af4e4cf7d1c3c263c05daf2b23ab1312086c279d17ae6ad0b266710f7dee0389a88bf3b1952c40d89939dfdb7d6eb9fe5f5fadcfcadabf45

  • SSDEEP

    768:wpgGzpDhewHUNND7PlgEiAgo+6sFriWz6StG4X/Kzrfj9TaSXlPWW/YaM+:3GFVewIk3FrB0XZTaMlPZ/YaM+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6939f2e1f14d51aa6d6bdf268bc458a5_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2728

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    dd1c159270a50895b26dd9c9d881aff5

    SHA1

    ec900e031449ad5fb1bc8abd41fe760261bf1439

    SHA256

    6815cc2f686e3c2fbeb3c60abe2fa1c13153770b376ad1294eabad3f18ba55c3

    SHA512

    5022915681104104dd05f3262be1d106d12d972062b84269c3939a5991e61e9f3b1aa46dd5e154a349aa79736eace0149da6bc5e59e23985e29a061a8955f424

    Download Submit