Overview

overview

3

Static

static

3

6947347a45...18.pdf

windows7-x64

1

6947347a45...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    23-05-2024 01:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6947347a455881563339f6eb176525b4_JaffaCakes118.pdf

  • Size

    45KB

  • MD5

    6947347a455881563339f6eb176525b4

  • SHA1

    fec00c746b3d4cf3c614631327a81e5d5b459e77

  • SHA256

    a833e472a9498a3154cca54671aad5dddb47428b806da70365083f2a8a4d57de

  • SHA512

    6a5aa730da959c97c61b654455b584c963520119ab1922814887e32e87ba166e5aa1eb89bb43ecfd2849ee68d01ee321a81aa564bb885e72d523e70f0d243ce3

  • SSDEEP

    768:cgGzpDQezuMP9XdUXTYSrytUD90+gH2BhLeM0DJsMlFbi+hApmX34zoQZl4FxbMQ:5GF0eTdUXTYSrbEM0DqMXbi+hApmn4x0

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6947347a455881563339f6eb176525b4_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2908

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1f8c53bd1e73cc676a826c97ae7032a2

    SHA1

    32090317b5ff9bd6ca5a8511ab35e1271a90fe69

    SHA256

    8b017ed66346f5615cce0140f25d89673d24f9e5850424ca409135ceff4635da

    SHA512

    c68215ba4f09f388ce6596d6374b50c7ba0e2d91385bc9ac594feae8b0f12df850c198dec12a619c22e56786d45c7ec4d5ed82ef21d46aeef29882f50e715fb5

    Download Submit