Overview

overview

3

Static

static

3

a71ee5d30a...18.pdf

windows7-x64

1

a71ee5d30a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 23:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a71ee5d30a558196d510c1ef5fb7cbe8_JaffaCakes118.pdf

  • Size

    45KB

  • MD5

    a71ee5d30a558196d510c1ef5fb7cbe8

  • SHA1

    60af84213a09ac3b3d11849861d78364ad196a1b

  • SHA256

    78fa0c385c6ed4f4f0a2b23a0124864b3b6bc8a9dacc2935d2997115e3d652c2

  • SHA512

    97c5d5d9a3d7d14e3fe965834ca6d419925a65fc1db36cb6a5bf68abc0af8b2c48494bd467ca00aaea9afbbde9806f9bf32c660f9a33fff6e313a25a7824f290

  • SSDEEP

    768:ZgGzpDcKMTcQILNXMnlwIDxv2tT6gV/hvbb4mjVopVLS020rCzeyQlkPNfedVf:aGFIZv2cgn/zophS020eblWdVf

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a71ee5d30a558196d510c1ef5fb7cbe8_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2004

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b32760268d5d5029b6e09f164974ac57

    SHA1

    8968b237b04e360982063e941370129e76672983

    SHA256

    ff7eb88e44149ef12c8d24ac1cf93eb57565713d412a5330a79aee74c00af9e6

    SHA512

    52e6a3749b9efc195320cf5547c49e120b867b4cdda3bc6018f23c28d80736b9757b90a09d306f49b4ec61843d662ee64b3b8f953dce706638bb25c6de230527

    Download Submit