Overview

overview

3

Static

static

3

a05fe9e0ac...18.pdf

windows7-x64

1

a05fe9e0ac...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 10:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a05fe9e0aca97078127688f846c8e0b5_JaffaCakes118.pdf

  • Size

    42KB

  • MD5

    a05fe9e0aca97078127688f846c8e0b5

  • SHA1

    3f1d27f955b2be1d0c5e406c48cc48bb200bb79f

  • SHA256

    a69b5aa71b80710b407b0c367d7e5a3e7291e62c809dd5e9ed318752b5d780a8

  • SHA512

    1a4326ad4b6a76e864c43abd01d057bf78488f5505d8ff2ac96c6f69c8426e3f1698e7f16e223f199b09636de7b592c7e3a88a31f9e184eb84947a424d8c635d

  • SSDEEP

    768:YgGzpD/J9h9+V6q34kMCH1GBsGZM+wFuaa7+RhtPBPcqYh5ljAAtCZlodLcGffPP:1GFjVZ10uau+hJ9Yh5yAtCZadoGHPUkx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a05fe9e0aca97078127688f846c8e0b5_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1936

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3fad4e6796a20a9cc9df60626d05b223

    SHA1

    100cdcda7a5379b61bb897b1b87d199e0256d613

    SHA256

    1dd9a596ecea6f6ada7d00fdab50b1aa609b7e35cc2dfd858345f87b15909f58

    SHA512

    04d30b4ef36619e3ccfdf057b3132cb3e8bac648a37491338d44b99f8dc73ebe09814493fa4ec526b05fb138ab7498126e3d76e44d8ae80961185491e5b6a766

    Download Submit