Overview

overview

3

Static

static

3

a70c730ecf...18.pdf

windows7-x64

1

a70c730ecf...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 23:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a70c730ecf963e99cf1ae20f4f2ae843_JaffaCakes118.pdf

  • Size

    38KB

  • MD5

    a70c730ecf963e99cf1ae20f4f2ae843

  • SHA1

    16c73d33349069857e0f9d47f5df0bf3024394d3

  • SHA256

    b8c20d60c7995c8f40c005939227beaf185becbddc4e10905a66525cf28b3d55

  • SHA512

    6565ba06d83b2138df76301e3f6dde7286397d5a6b71d551d67e8b64547aeea6de0eb45d19edf0f32a26d4e39638aab6a7421921b0678a2f334efd557790113b

  • SSDEEP

    768:0XuMZmwgCLWari67OEX9bY5hQftLagAtGnMKmIT0GDF9XIt7lXFHV+nj8:0XFZmGWStE5hctLagAtGMKv0cy71F1+Q

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a70c730ecf963e99cf1ae20f4f2ae843_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2244

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0bea68f020578a4fba61444334545e62

    SHA1

    34449c0b018ec10199fca0ea5f7001f21fe5bd6b

    SHA256

    40a97b0baa32a745b82c76ac490872dd1e732d9509ca6820df71acfb77a45ea8

    SHA512

    6c5bcc12fe9692a55f789c7f4fc3fb033706f017356166745ca9a9adaeb5abae7d1744b8bf55dfbd9d9a0dcb0df56dff2cb620a60506e56743f1c91133cffd9b

    Download Submit