Overview

overview

3

Static

static

3

96ebeccc43...18.pdf

windows7-x64

1

96ebeccc43...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    05/06/2024, 01:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    96ebeccc435ab92d8a081e148f5f4510_JaffaCakes118.pdf

  • Size

    49KB

  • MD5

    96ebeccc435ab92d8a081e148f5f4510

  • SHA1

    5a552bf16552308f980364edf7153c35c82a88fd

  • SHA256

    9f7137f8bd7f8737d4052fc1f5b5f1c520333fd2aeede833a0c5c4538a136d3f

  • SHA512

    5d06b086d13e633deb3d55c8d4212ba3f0b95c7d74a7d3bc7d82ea9a4cfd574f1b15183e1773e8c09010ff72e5c3795389607528f88adcdf90ff30f9214ce95f

  • SSDEEP

    768:RgGzpD1hVVEA9/TDN0DkNkNfBJY1CIhJ85kdUUy4fJLg+FVXgHJijsJyWMERAwqw:iGFBhsBJYnJaw16JiQJoE2wqyNZ0eRL

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\96ebeccc435ab92d8a081e148f5f4510_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2908

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7e0cd909e2a44fcfd5a9e616c1ea95af

    SHA1

    0dfb982eff2f7d9c63d505d27639d6813506b042

    SHA256

    d3b0cb6bd3d091d2ba3c18c23f2badfbc0953118b4226ab59aefb724e370bdd5

    SHA512

    7e18f8abd6809d063d85991da37b6fdb79e76c339fd203617f46d2cb7fcede95b2d2a8d1af24ba156c99c7640e0a9d0e2e038394165e1bbd43f3bde799f194ef

    Download Submit