Overview

overview

3

Static

static

3

9e6bba9e20...18.pdf

windows7-x64

1

9e6bba9e20...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    11/06/2024, 13:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9e6bba9e209e30e042c6ab05b9c5f565_JaffaCakes118.pdf

  • Size

    40KB

  • MD5

    9e6bba9e209e30e042c6ab05b9c5f565

  • SHA1

    28e634f8d4e80f24c481394689850fd34b2d5528

  • SHA256

    18015dda945adacedccea0209b9466ee0cd3f75505caa2ec7f8d0c85d3d49055

  • SHA512

    fc936fb236175f980937bdf98c2c2b265ef0bf1aacf86899bd6af88ba26c373aa00da6f451db78d35f600e71b1751625ff693faad9cfa99c676f6efcd2ac1379

  • SSDEEP

    768:TgGzpDthPLrIr11x8233U9QeaH8LG1VsITa8WX2ukxGRFtYGDbBGAuxgkbVTYGb:sGF5G4a8LG4Ia2CRbYOs7+e6Gb

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\9e6bba9e209e30e042c6ab05b9c5f565_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2084

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    444ece1096b595839b1ed51289f0885a

    SHA1

    a48ebf2d94831fa3ed9cadf455d64abce916f46b

    SHA256

    99a2090f1d6fc9ec4d54f16499e4242d241fd26c0b753cae50fcf4e8ea56f8cf

    SHA512

    b0bbd7b893b11666f87b446fe133d99a78223be89f8dce4de3f7edb7d32cabd297173fe4eb358d615e84f794c806a140b9ca7a5e819333bfbda64302665cb0be

    Download Submit