Overview

overview

3

Static

static

3

6d16d9e7d3...18.pdf

windows7-x64

1

6d16d9e7d3...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    24-05-2024 02:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6d16d9e7d389cd2932ccb33b0dec354a_JaffaCakes118.pdf

  • Size

    33KB

  • MD5

    6d16d9e7d389cd2932ccb33b0dec354a

  • SHA1

    93e3b0a950bffe05013046a27a3900ce76741ac1

  • SHA256

    8304dccbe5246f8faae9a055b5fff2ef928a95ef9e00bc0a482366995c2af511

  • SHA512

    fd262bf008f5009cc7a4036f9a5aaad11a9e4c9885827010c15a7c686756a7c2fcaf21f813a84a767b8900cb77475e1fdd85496cb0369d0f3201a65385bf0301

  • SSDEEP

    768:GXuMZmwgCLWar6E5Hpx1GP+XhWbyDeOT49S1Z2pDSngcv/+XoNGODs:GXFZmGWSbj1GP+XhWbyDeOT49S1wpAg1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6d16d9e7d389cd2932ccb33b0dec354a_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2180

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    557be0ea17aa6653f6265a6df5fbd0cf

    SHA1

    bfb577b67e1f1c606891b2ebef8cb26834e90f24

    SHA256

    c9ba7a26d236664329bd43ecc126d2354ac98683c6f7d5a6280ffa77bb7b30ca

    SHA512

    10aa59e6cc817ddb52cc1cf3d416f4df6f7ae54c1469569a26625eb8eb008876ebaedb122ed29757ed989d97a5179112d3ab87707500e6d87be275832049f964

    Download Submit