Overview

overview

3

Static

static

3

770c678832...18.pdf

windows7-x64

1

770c678832...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26-05-2024 22:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    770c678832ad830f0c852a1d6a13d110_JaffaCakes118.pdf

  • Size

    33KB

  • MD5

    770c678832ad830f0c852a1d6a13d110

  • SHA1

    91713259510048bfeabde6ed734ff3f3d8d14d64

  • SHA256

    002bb53417dc5f051f25fb3d6f6cdde2e6dbd23d1566506fe73ad2d01bfb5c14

  • SHA512

    dc24cf63ac5e30f78bb26e2ef81295620c50b7d785b641d0ea2d978e4bec07ab3a450de297082a0f704e850c811a2b001bbba2da56528d73013421a6b317e7e1

  • SSDEEP

    768:ngGzpDvpBQd9a2/i9JipYi42XRi1WhK/GDlmzIV+Wk7L1U:gGFzpeO1W8GDlmVWIL1U

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\770c678832ad830f0c852a1d6a13d110_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1644

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    57403252e0f7f0f30a7c2d929d298ce2

    SHA1

    b4abc74efb9669b328e43feb901dc190a7492eae

    SHA256

    00cbe4dc11cda2580518abb30ac7aebb65fd0992d0858cf612e587c22d7198f8

    SHA512

    e7cc342e660fc805c41696893a5b930513af8090764477c85dd59fc2163365f498833a5ef1aa2e03e5479e0b47f7ef3de21ca4d5c680208908bea5aea65c346d

    Download Submit