Overview

overview

3

Static

static

3

a5b7128bf8...18.pdf

windows7-x64

1

a5b7128bf8...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 13:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a5b7128bf83c3eec2b5486cc6043b4bb_JaffaCakes118.pdf

  • Size

    45KB

  • MD5

    a5b7128bf83c3eec2b5486cc6043b4bb

  • SHA1

    fe6c097e87084341932f20e43bd45a8c2dba5f14

  • SHA256

    eff278d201c3c3179e03526c71c81f3bf631b62cae85bea991dce94e911de754

  • SHA512

    ba6192e4bad3d55c1fa4decd18bf4a296f23da20bbdc694451d2a593e6b61ea0792d483d91e7a929e8e7152c7c7af3d5979a12af6f662aa9b3477383f412929d

  • SSDEEP

    768:MgGzpDM1FJ5ghonxWpx7iSrOTWhevmb3d2n/cPwdBvHuBSWW9MPAjCWpxpOmB:JGFgtSrcAR7uuBSWW9/WWvpOmB

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a5b7128bf83c3eec2b5486cc6043b4bb_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1732

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0e5a23ffe1a8c5206b0b7933fe96deb8

    SHA1

    5ea86e1dcac3bc93ae2fa6fdb2119ab41ca7b369

    SHA256

    b8b2a8214ea65fa7a306e698ff2714265b4ed25a42278cacd509f9585850f356

    SHA512

    3fec297582dcc5021093ba8f65755a9f5f42f723bbeeb0af182f653ea579c3bf4ad9e8226d14663bf0767676cc32d39ab4bd5177b96f586b8d5650bf4c9f87db

    Download Submit