Overview

overview

3

Static

static

3

a6499efaf8...18.pdf

windows7-x64

1

a6499efaf8...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 15:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a6499efaf8e0c2fdff93ebe45f8ccbf0_JaffaCakes118.pdf

  • Size

    45KB

  • MD5

    a6499efaf8e0c2fdff93ebe45f8ccbf0

  • SHA1

    a283995e5dc32a0462267b4124a110cb3a9118ad

  • SHA256

    54a7c6091d0be7258cf31aa9a28fccad20cb93a6dd2f22df93e393407c632e03

  • SHA512

    37fe1540c587f57f9b03a20bef0dcaa9df26d32c5ce2423ae0c30303061fd52234d20c5a74650cdd3c464b161630f26338efaea77e8812e1336591f079bdf30f

  • SSDEEP

    768:1gGzpD0pUj2i2YSwkverq1vBnwvNtRJlcKAkcZQoZAuPXOv8zlVVi7qfZL0uly:mGFwpUXkverq1vCYrS8znY+L0uly

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a6499efaf8e0c2fdff93ebe45f8ccbf0_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:108

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4e3ac4374d675e0176187e0a5105822a

    SHA1

    ab00cec74952f2890ff37fb9e821668faf212313

    SHA256

    0171f38da0b8723d4f5792cf0b312eb6925476357adc0423c4a49adef7aaefc1

    SHA512

    9505863a4f2543cd9bfd50a3c593a71e4cd56f6336aaa4cef702e36af1fa6c2ef1e59304d34350a5d97a68ff22c142f9f1b2d795d34321f420c8a05dbc632da2

    Download Submit