Overview

overview

3

Static

static

3

ab99828b6d...18.pdf

windows7-x64

1

ab99828b6d...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    14/06/2024, 21:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ab99828b6d8ed1cf20ecaa1d05dbda14_JaffaCakes118.pdf

  • Size

    34KB

  • MD5

    ab99828b6d8ed1cf20ecaa1d05dbda14

  • SHA1

    118abf1fcc7b36df7bdaeebacf7cc9f411014211

  • SHA256

    03d3d56899999acaf9d74a69b5f6e844bffe83a1dd88a2253fdf864eedda0813

  • SHA512

    fb1cc7976ed9fe7fc6113ffb9a8580600ccf5c3086c67800f2e3e6f6d26b14c6d456f0eca270a36ab817126a8c4ca167af53ecf9fc7e557175221e76fd3f3c71

  • SSDEEP

    768:tDti+6Mwwh1QGXVN3QJ4ggbhClj1vJTElV0OrLT4/SlRlgIphx9ceE5NXuMZmwgZ:txi+dh1QqdQSggUlj1vJTElV0WLT4/SZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ab99828b6d8ed1cf20ecaa1d05dbda14_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2904

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c83aec4db301b74952f937e5f772e483

    SHA1

    9f8d030062c159ad01d29cd9bfdbe78efb367531

    SHA256

    f2f7e41c820f29c0becb0b6f182b121c14d524650baf36f322b9d37447672c04

    SHA512

    9cba0f1b4961676377ddc40ac5825c5dfc01228e93fb30394b9b61fe1fb13456384ca268afe1418d7fff69fd4bea9310a0760fbd1bd67235568e7ca0a297fa4a

    Download Submit