Overview

overview

3

Static

static

3

a6ee999b80...18.pdf

windows7-x64

1

a6ee999b80...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 22:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a6ee999b805874b5c88d8dfd5dcf8e7a_JaffaCakes118.pdf

  • Size

    42KB

  • MD5

    a6ee999b805874b5c88d8dfd5dcf8e7a

  • SHA1

    5bdcfc21a3b5ec281a738ce122f87a1c6b4e3239

  • SHA256

    d50d677e728008d6c67fbc180e682e32250d7a6d4eea518b2219e3f50d72d69c

  • SHA512

    369bcdae6c33105cfa167c228d0f97ff274bb1241ee3cc7f460d77d30b0236fc8d3147b7eca289d99b353755fc330504eb6f70abf4c18b87c559fb3919700a7a

  • SSDEEP

    768:VgGzpDsg0EumLFQhdBcUvBPDepzMZHaxG42iM8mnjRvDClHVTq/K0oMZ/:GGFf0UeHaxBVajRvDCB5q/15/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a6ee999b805874b5c88d8dfd5dcf8e7a_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2452

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b764a0fdcec436b9177800aab97de0eb

    SHA1

    0593e2e7645b4963fac0fcb006de10e47b5d6ab7

    SHA256

    4d7471565efe4dcd2bd5f4060613d0c6be2a28ee683422b2f4df50331b1aac32

    SHA512

    7327064d52096fdcebb5bff3d4415bb419505879018556c8f18164658d9304de6c88d650dbc1c21f2367fa745efc12c24feb8dd931312112d313a9f950516fcb

    Download Submit