Overview

overview

3

Static

static

3

6a443b93fa...18.pdf

windows7-x64

1

6a443b93fa...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    23-05-2024 07:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6a443b93fa83971b5892bccd7c4960ca_JaffaCakes118.pdf

  • Size

    50KB

  • MD5

    6a443b93fa83971b5892bccd7c4960ca

  • SHA1

    272d0d0e2b3eb34a53a279641ebc1cb96f7d78f8

  • SHA256

    91799dcb4b55eecb13a2f3b49ef5f8a666ba6f810c68af6631be057516dc977f

  • SHA512

    9b674041e1c22cb0076de77f83c970fcc399be42282c527cc52c8901c4187a9272afaec03153da5bca5a9ffcf5c412c65076b071d7fd2018d448468ec7463303

  • SSDEEP

    1536:8GFRp2KCQZ9nncwPB6TgmNO9MWB2B+YsIx:ZFRp2KCQzcw0TgR9cBL9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6a443b93fa83971b5892bccd7c4960ca_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2976

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ccf3ed115adc11ff48a9159177f7fc22

    SHA1

    0a78e994ad63d7ea464223c9cad90eff14a77537

    SHA256

    e34bf7c2c95f9ccbc59c1f181489880c3e3a5df25bede116d24cdcacc390be31

    SHA512

    9e97443c47ecbaf0a2193d8bbd9ec4b00a2fc93b3b7c38703a675d2b7f74019211b6a34d14312917bea2995baa3243175e906f653607ddfbad3feb5c60e6797f

    Download Submit