Overview

overview

3

Static

static

3

b7767b8878...18.pdf

windows7-x64

1

b7767b8878...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    17-06-2024 07:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b7767b8878a30e6762eecf5b6adea529_JaffaCakes118.pdf

  • Size

    39KB

  • MD5

    b7767b8878a30e6762eecf5b6adea529

  • SHA1

    57e3170efe8b96dc29332c302992058fbe1b970f

  • SHA256

    68d09871efeb53db29e281aba0e94b41d6d8cc975d73065d37507e7c525b8c21

  • SHA512

    a9ab123eff99b1e4594aad82449657eab1d99eb9255b371ee71119336925d61d83740623eb584fc6d6cc2f5d9598250f2381f96a86483f5a6033e2cfb768b0ac

  • SSDEEP

    768:Ot1qhXR59Y/sp2b58WpBi9NBoZQ+VFkEd8kll/15JKEbVQOrGTE/PlRl4Irh39+5:OtYhOg26WpI9YZQ6Fd8kll/15JKEbVQP

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b7767b8878a30e6762eecf5b6adea529_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2364

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0d7035b176806d5b15c761cb0f5fbf45

    SHA1

    aa6d8b416b9ca2cf4bf911f2510b3aa7399142f7

    SHA256

    7504c7dbe09eb4bd3b74f574a065de8943372b7b74f91905127e65a719b277e5

    SHA512

    c1fab0c45e2340bf985bc1290eb9e311071b7f1632f270c6858eaeef3dcc182f0e1a63b678fd6e1e3a7a783260aa4c32db76a8201c5c51d81a43e6e03adbe8a8

    Download Submit