Overview

overview

3

Static

static

3

a595022982...18.pdf

windows7-x64

1

a595022982...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 12:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a595022982b0692956d4d7ae688cee55_JaffaCakes118.pdf

  • Size

    15KB

  • MD5

    a595022982b0692956d4d7ae688cee55

  • SHA1

    bb0542a9b7b5efc472bd36bd0a671b154776f2ed

  • SHA256

    adbf6918021304119cdc9d2fe01c983be84b32628c64a0342427fc4f15117ad7

  • SHA512

    fa21c3ca6593bceeb8c1f43e5660b68939992417c3ce7db85fc537ab337efccefe8e16e62d143d8b0ddfdf354208daed6f3b199088a933798c7fa20bbae41f61

  • SSDEEP

    384:Vzf2bKuKLz1oExZmrtp0wWnFI+yjdsI+vZVx3+D3ylUXr0QvnXjI:VzJz1/xZmrtOwWna+yjdsI+vZVd+D3y/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a595022982b0692956d4d7ae688cee55_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2256

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    fcfb77e3b720dd42363a09a3a69c9ee6

    SHA1

    5feaadc443d4ec1dbb23f1776157ad7148afab4a

    SHA256

    6b151b59ede709c6282936094880bc7abba6e8147352fff688cf5059550241c0

    SHA512

    ce60805767bdc4cd364c1a30ca9a8673d928f8765f627b9422b59fe84610d3f83101f3f34e77ad1544cb90f8edc131802bf77f460f88323559dba96ad2a04fad

    Download Submit