Overview

overview

3

Static

static

3

75f18a9e7f...18.pdf

windows7-x64

1

75f18a9e7f...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    26-05-2024 15:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    75f18a9e7fbe939a9a0ce641cce3262c_JaffaCakes118.pdf

  • Size

    41KB

  • MD5

    75f18a9e7fbe939a9a0ce641cce3262c

  • SHA1

    cb77b31fdc12ac8bb4bd7256395cccfdce073ac5

  • SHA256

    9d0068517b1ed29dad8c7fc25e5b1d1910f9dcdfe038485bd5fe6134e4ab782d

  • SHA512

    9cd61dfeba8226c30e4a68e75904decf7f6f79ff6c3500086563ef2020357caee2f35bbdd84d4c1ae7175c835feb4a9ab1587c64c713c96a7eb089f9952f22c6

  • SSDEEP

    768:Ke6Dppe4Y1rZeihNh7b3pzlIzhH9bBRlX2POHk1yCF3d1Q9WK8qVTqcBE53XuMZJ:l6DO4YaiB7b3PIzhH9bBRlX2POHk1y6b

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\75f18a9e7fbe939a9a0ce641cce3262c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3044

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f0dc5d20a82fb6bc5a2fe54899a99b14

    SHA1

    b06a9c0d21c598d978e407db606d1ee5c3be3dab

    SHA256

    a7bd8c15d68f2849b0bdbff0ed3822701b4221492a6b37168801996e009cf591

    SHA512

    c8b8fb56024b5f6e277f706801ebd2dfb9d90739d48f4e6814bf7a07c62ac81519040ed1479dfe09b717105ca7128fb8dbef879c5da7d0daea2d4458ab1ff258

    Download Submit