Overview

overview

3

Static

static

3

a25476be1e...18.pdf

windows7-x64

1

a25476be1e...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12-06-2024 20:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a25476be1e3529167cc942dec4be8760_JaffaCakes118.pdf

  • Size

    39KB

  • MD5

    a25476be1e3529167cc942dec4be8760

  • SHA1

    6229544a4fb58dea544d19b68e6c783eb23e94ac

  • SHA256

    d5197e889be5feed89285aceb8a80de93a325f263ff51001b8d4530e304566a5

  • SHA512

    953c0a72f1715a851aa89ecbaa9771d11bb0ec62994acd2d90950f174060898da04bdf5f81910a6952d9dfd5e4a12a973e5e6612d6c9a15b053e6e3f9165898d

  • SSDEEP

    768:gXuMZmwgCLWarDbpKzzJOIU9Ni0mFnGWg33rlHvnkO:gXFZmGWSDKzoIU9NbqGWYnkO

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a25476be1e3529167cc942dec4be8760_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1192

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8df52dfd0fdedacbde7018338cd37a67

    SHA1

    9cfb1bf4d711a9ebb2aa289aec31dec6cc7e1ca8

    SHA256

    ae21fa8c0af8432c5a22b4de7b1fe67aed3a0b790acf4b968958c7913758ea8d

    SHA512

    c06e0c1b94b6b9f9e7aef8033a37b318e80b087fbc1f32cae23cba3d86bacd6ea08a2b342e8216f03a1ca09a80f8c147e4f04f0a4a45a31aa299256b1fe29f7c

    Download Submit