Overview

overview

3

Static

static

3

696d661168...18.pdf

windows7-x64

1

696d661168...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    23-05-2024 02:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    696d661168650053b66c8b16fe56ee63_JaffaCakes118.pdf

  • Size

    37KB

  • MD5

    696d661168650053b66c8b16fe56ee63

  • SHA1

    c4ae4cf41600693b2dd365f8e6e54aad124557dc

  • SHA256

    599e744af163ee82620f4bd2f778889e136037b945a867dc5e1e4dd892b746ea

  • SHA512

    61c48e502326bf270ae0b9fa089393c7f151baf18374d1ba5aca80b623f243e61db3ea7f74add84cc759cbb5c2cdda78c5e188272329bb5de8bec5b1537ffd44

  • SSDEEP

    768:ggGzpD/ep0qr2FICb1kE15GRXkxrhbQvKvl31x/UGAHD+mT/QXlPWluPcn:tGFLepBMrhsv4LUGAjXT/GlPGuPcn

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\696d661168650053b66c8b16fe56ee63_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2180

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    bf8ee3630a16b7066258ac0998736323

    SHA1

    0574aaa6a64bfc541ecac4f467da612885f9757c

    SHA256

    1fb2c33afe29c083c9ea86390233a6674e93a4a69d55b6b5b91f7295fda49e54

    SHA512

    192b8d3fcaf7ec5a32ea36c3a412134d5e46a7faddd7c83c059c800ae540513234436af55553e6f3123a816ac78dffa9c9035eea36e135784f61bdc6b2c33c91

    Download Submit