Overview

overview

3

Static

static

3

a6e168b16d...18.pdf

windows7-x64

1

a6e168b16d...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 22:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a6e168b16d19acd7a197e99fb72337a5_JaffaCakes118.pdf

  • Size

    88KB

  • MD5

    a6e168b16d19acd7a197e99fb72337a5

  • SHA1

    410d46dfaae97109d5d4c043b75006394c6e9eda

  • SHA256

    80204251317235d81ceaff982d58e3214eb77775e3d4a318c7224486ce559d47

  • SHA512

    acf8ce847fba104663aa2f283333de88e8b3d0ac8bd19576b58bdd697b8065c464244ecd00cba83caa0cb8168ec89c9cdbc3bd2a0af2c0dca37e0910bcf6386c

  • SSDEEP

    1536:7GFApU/4x9ux1D6Xa0gPv9Z7V3DfopuCLRsDrE0te8pewIGSCancGAo1H+YCkX:aFApU/GIxl6XaPL1cgCLmEjMRSCanv7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a6e168b16d19acd7a197e99fb72337a5_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2428

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4d1d3caccaf6addb4c9442cd40decff8

    SHA1

    e3b107969f62801e99785a9b263a9219b846395a

    SHA256

    4821a872bde9e9d75790349b08928e536ef70637ae55d172242830c4603a1815

    SHA512

    2452f96ec79b7cea8558b528731f955a8e5ef71b16de41ef28018019e59987540ce477691b442480405ee4c998d21536b45dbb36b1aa3ee22700585ef9b80fff

    Download Submit