Overview

overview

3

Static

static

3

ab3b4d17a6...18.pdf

windows7-x64

1

ab3b4d17a6...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    14/06/2024, 20:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ab3b4d17a60c9704246a491ddfda4253_JaffaCakes118.pdf

  • Size

    41KB

  • MD5

    ab3b4d17a60c9704246a491ddfda4253

  • SHA1

    408d9899b8583647cefe17dd34c0f94f4da43395

  • SHA256

    5680f8c736b8c8ff4e722351a768a06b01f874d8be0a9075d8494e103c338d4c

  • SHA512

    4a710764bfee5e6a270ad28d8cf001a4d48a60382a3947c13d0cfdcbd407c6fa12132c12a73a4be220f14641fc43d28078caeffce2a0085a322a4c4123fee2bb

  • SSDEEP

    768:mgGzpDepevivVcTeBtEBJQ5NIgBOHc07MOdDUhAT1jYKUtL067rHLJwkoXVj:zGF6psZmIgcVDUhAxSt3ypXVj

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ab3b4d17a60c9704246a491ddfda4253_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2020

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c81a0116f4cf96c977c2bd251292ddf4

    SHA1

    2f57f863f5edbbc4b42ed80fb9ac4f9dcfb01064

    SHA256

    396de155a41fbd8485a890e4ff93c559ee728fe072084bc7fc1ef378e9c0f05c

    SHA512

    c1c648b43ace12d8fccb654881cb517bf384f36e11190810b22b33e8b32c5307b1f0a189dba643509629b4c2fda71f1b464e08e6624ae1d9e7ccc1e6fc3788a1

    Download Submit