Overview

overview

3

Static

static

3

696463d6bd...18.pdf

windows7-x64

1

696463d6bd...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    23-05-2024 02:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    696463d6bd518749d044f65b2a10fc7e_JaffaCakes118.pdf

  • Size

    52KB

  • MD5

    696463d6bd518749d044f65b2a10fc7e

  • SHA1

    22705d986c9d6bf1e5422e283d7455f338cc9dba

  • SHA256

    31ee456329a5ac5bc0e1143979194a8229adc6686b4e707b9acc0ecacd9ecc8f

  • SHA512

    ff3c9f89c12e12c78e9fe8e04d16726cf2502023905d398c1ba2988114a1815339b624b7dffe10c9c015a79373c7ebd1753745e5dd5a2f5b8ac5dff9516dbf2a

  • SSDEEP

    768:GgGzpDFPMc+AmC3xGREjrXPBaAJRt5dIiEllvvbuPyxpDOrjoZlCKeuFzvBBcz+m:TGFJ7ZV34RO5dIia3bQCzvZ89QfrWfkI

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\696463d6bd518749d044f65b2a10fc7e_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2648

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f8a2fca9a8d5f2ce24e9f3785b7672e7

    SHA1

    0de847d88b89afff5042ff84659461274d51e642

    SHA256

    bfb9325c97c7556169ac5216725581b0331c00d5b57872b6caa292fe0466e9db

    SHA512

    cfac3c8a2c8ec33dc11a359d73484ca5e88c9e5267b88f3107080a87fc04ea6206433ec83a92e8f7d42986fb6ce4617a9d438f695673cee24acc6864ae4ee3bf

    Download Submit