Overview

overview

3

Static

static

3

a70f96fb53...18.pdf

windows7-x64

1

a70f96fb53...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 23:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a70f96fb5366436a8f50b8a923e6237b_JaffaCakes118.pdf

  • Size

    183KB

  • MD5

    a70f96fb5366436a8f50b8a923e6237b

  • SHA1

    d8445d0a51d726bda46659187636a975de42685b

  • SHA256

    90d5e487930b49b2b9d49dca1dc96147e97a0b7c07494875d86683ca630c9da4

  • SHA512

    a129a3df2f01847610eddd830d3cf66ddec682c8125b8eaeb156769ce3440e01f219411e991918d2f0d1ed3a5ebf951bf8d37f12f15cda5d58d2969550e094a0

  • SSDEEP

    3072:Z2irbxzGAFYDMxud7fKg3dXVmbOn5uK6KjnyCMwqTTX2SfpECkSh:Z2MKlWQ7Sg3d4bOTRM/PXp9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a70f96fb5366436a8f50b8a923e6237b_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2552

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1f027d558545829285d802926331520c

    SHA1

    e5fa97132836e92742c9c6901c5815ff8b2ba1e6

    SHA256

    fdac94cd738c1c43032e31a3f97516de866205b43b5a840e5c5d0c78ab35edce

    SHA512

    ef327712a622bfd0b243ac80bac30a0e50d366bca9dcd76af384549d4619e24a5454d4f73a163d5b60d25b905f6a2558076c35fadab584536a68bed5f04d06cf

    Download Submit