Overview

overview

3

Static

static

3

a6f42c3dae...18.pdf

windows7-x64

1

a6f42c3dae...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 22:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a6f42c3dae2d569e574f769b9350c4aa_JaffaCakes118.pdf

  • Size

    20KB

  • MD5

    a6f42c3dae2d569e574f769b9350c4aa

  • SHA1

    e5b47ebe416ef8723e7fede7ae7b98110949404e

  • SHA256

    439cbda86e6481255073561f007b7ac6f13d697655353b2133863b92655ad913

  • SHA512

    39a35f7aecf4bd80184a25a49e2317b97ce6e39e2130624bc8910ad9b282ff4b74541613f867585e565b893b59b352c2b3bd267887e6b3b45639f441aac8decb

  • SSDEEP

    384:VzBB4Iz1B23ITwPQZ0QvBhjbPudYbJ9RuTRCHI+bE2bxfHHFCo7kRSjG2VQ7TxoI:VzBB4Iz1BeowP2DvBhjbPudYbJ9RuTUK

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a6f42c3dae2d569e574f769b9350c4aa_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2888

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3bc0085e80d5501465b0b937d6ae9f28

    SHA1

    229150da1fb057b67d6399ea391e76820d882a4a

    SHA256

    f81c16f556ba894d56348e835f5defed91732eb3fcb5194b973c6e4eadb92897

    SHA512

    0351ae89bccf53ebb23b74397d8da16fbc63e98dd59e19f3624ed2c962d6365c5b38fd67ffe0acc31748b81383a5fd46694cee5b6ad17ac086de9d62218514d0

    Download Submit