Overview

overview

3

Static

static

3

a5a9e71803...18.pdf

windows7-x64

1

a5a9e71803...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 13:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a5a9e718039612e369f2d70297a18f4a_JaffaCakes118.pdf

  • Size

    43KB

  • MD5

    a5a9e718039612e369f2d70297a18f4a

  • SHA1

    6e959db4b0c179ebb8769057d9f05d8aff4134f9

  • SHA256

    2fc6854fde2b042d88d05e9039b28c213942268a9c738a76622bc87e1190b7a9

  • SHA512

    b6e6b1e04086088c59dba84ed1ed83d8f13ed0e71e08952b839e1901d8be9e39b4c096434fabf71b06d80ef0034af9498ae20ee8dd4bde7248cc0876a95fbdb5

  • SSDEEP

    768:VNgGzpDZeNCRHgM2/6SmKAElcJBj4O38CYzeTw5u5CAz1tUfEL+F5jtj/oSR1534:8GFdeXGElmDYzec5K/MEL+F5jtboSn5I

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a5a9e718039612e369f2d70297a18f4a_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2208

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f1171c68db3b2df80122f9b058374c55

    SHA1

    20c5210781f1652d4217ac7593370eb62d5849b2

    SHA256

    323d5e7c915cb45c7335342753ebf82c6b7c3750e97b0ef0bd5ad6c9a46f29ae

    SHA512

    dc6854e6d4716060eae7515b4d44e15219cdce1f3369443a73c5176ac8fdbab49a3f91fea55c5326e8aec9db9a7185fefded19c6fff509dc64f5f43dc0840512

    Download Submit