Overview

overview

3

Static

static

3

a5760a0572...18.pdf

windows7-x64

1

a5760a0572...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 12:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a5760a057271c2ec94f7d6f6a5a622b6_JaffaCakes118.pdf

  • Size

    41KB

  • MD5

    a5760a057271c2ec94f7d6f6a5a622b6

  • SHA1

    13c0be6bd91ad05e2481b4cf8cee53f731902509

  • SHA256

    fc2aa65c3f45ce2b30a1fb40b82269946cce8f3b556be853f93d664569f6f9c1

  • SHA512

    d3e71a33beedbceaf39846ee218b76da62c0deb365718052c1cb7ec482826cb85896d3b3793acf975dea48f30f6b9e2bccc59ea48a03d660ca5f65d4119a0b39

  • SSDEEP

    768:4wgGzpDO9AzdC8lSis329nZI6ZYewQnQj+un5fSJ304vdaVwjfHkKa4aUTZh3+XN:kGFa9M7LK+c5fSJ39VaVaH9UUTZh3+XN

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a5760a057271c2ec94f7d6f6a5a622b6_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1652

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8180654fd5e95788415e5d378fd5602e

    SHA1

    344fe2661113b1480c78f16b5921febe8d0e9555

    SHA256

    819358bee7abd12242b0178f8fdf66fec4ea19c14f78de941da0f81d7213a083

    SHA512

    29094b1e65532f7623aee4ee59e12a83616fc988475e8ec7ffbe0abe58462720de3ae5985cc344c266df72f728256064b629f9f009c27aecc38d4393a09b872b

    Download Submit