Overview

overview

3

Static

static

3

a04e8994dc...18.pdf

windows7-x64

1

a04e8994dc...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 10:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a04e8994dcd8dca52c950e849fe713f2_JaffaCakes118.pdf

  • Size

    36KB

  • MD5

    a04e8994dcd8dca52c950e849fe713f2

  • SHA1

    4ac4c6d015d0eaa44d6a37d0a824679154ca3fd1

  • SHA256

    4f48e8da5634f16f7e34f5684cc9aa3f2d7f4f856d11dcc58a3e0204be63cb3b

  • SHA512

    d08daddcd1329ede45a36853b3343b8a92d388f4f832d708141b16232a80d461c650d9b2ea2ae34fd742315b19a39b302d2e95fc4f6523933ebaa1e0e1b78f1b

  • SSDEEP

    768:fgGzpDlpql7KHjyoRcAfNM3Yt5HE7kTJIpTwrOOt64f4Jh7nOEU0NHG:oGF5pLBzTJIpTaOOt6jU0Nm

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a04e8994dcd8dca52c950e849fe713f2_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2060

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    00c6fb9557f45de9eb72c9a23d80a920

    SHA1

    774bf19829d8f7c882000d2543a156f631da5d0e

    SHA256

    f320360753242cdd971048eeb5bfa5a3495ad827a0cf19784597459864587a07

    SHA512

    acde53d55160a35d237c5370b4c21c2072ef31d3028cc75023c72d1ff584aabe713a5b6d80072f5b47e6d5bd8bb2613b563c24c10088490471120efcf59d31db

    Download Submit