Overview

overview

3

Static

static

3

a5677c007b...18.pdf

windows7-x64

1

a5677c007b...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 11:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a5677c007bd17260e9646c451a47684d_JaffaCakes118.pdf

  • Size

    45KB

  • MD5

    a5677c007bd17260e9646c451a47684d

  • SHA1

    9d1c5db35957418f44c12e52dc55abd0c870c168

  • SHA256

    0c8b0205c76925585265343ed89bd562487ef895ec8ca793162921b0e030604e

  • SHA512

    19965c337c7950c19e6efc68534bd069ac8d525bdc69dd1abb4dee7071f004e9d595dc4c62e8950f29f30031d6348e2d1f166a2f1c8208d7a97d733978b14747

  • SSDEEP

    768:yzJOs/pYP+Tcx/VjnTHSebVfdioeOAgTF7yy1Gf+HFSj6EqVPdE5kXuMZmwgCLWj:yVDpuWMFnTHSebV1IOJ00QOVPnXFZmGu

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a5677c007bd17260e9646c451a47684d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2012

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ce36fdbede2ce5c8a84acedff8ab5b46

    SHA1

    de1be3fdb73846bfaffa0b9fa6c28483ae46b61f

    SHA256

    fa4ebeb01f337a54f9e4de3051fd7ca8f337a805f8d9dd776c530355e7f82d42

    SHA512

    45b2c7ba37413ecec6acf1ea58b6c819b940d0ba5f500f8d6d1c5a55be9b80e0af53c477d9bbd81cf96e7a0e8b278dd1342397e8bad8f981db306e3441594b61

    Download Submit