Overview

overview

3

Static

static

3

b651fc6143...18.pdf

windows7-x64

1

b651fc6143...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    17-06-2024 02:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b651fc6143529795c720417596e32eba_JaffaCakes118.pdf

  • Size

    79KB

  • MD5

    b651fc6143529795c720417596e32eba

  • SHA1

    0644f2bd120bce4a75133af64e513424ae568250

  • SHA256

    5cee54712648a76a2382b7f0ebdb79765ffe030b5e76a76c619b0541362d98ab

  • SHA512

    0347f93ad2d18e0661418f0475bc85f65a14a83721f926d3dc105a6364bcdd54ac5eda827786a4ff9d6037e16a0f11f5e10af9a84080f9cd564672d138bd3acc

  • SSDEEP

    1536:/GFnpSH3dVZ1qZGKlyPuoUjHjOQr2GFxYxeAf0czv2kSa9wq0:uFnpsZ7KlyP9UvOQoIA8cLTn9o

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b651fc6143529795c720417596e32eba_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2584

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    77bbd0c4a37770a683ee0c875d164ca2

    SHA1

    ee73e3c362dd940c1fd0922669d43c8d430d00ae

    SHA256

    1c9a55cb7e181301eaf21aec1d739c779687aef6fce7aa7b911f2f7c615acead

    SHA512

    6831b65b461c4208e7db97cb079dfad9da2ade72c74956aabc3f5777d11eb16c8c028e315f4b613848ca801193ff0bb8836228a6c882ae614465c7ac0af8d4c2

    Download Submit