Overview

overview

3

Static

static

3

b818f61d6e...18.pdf

windows7-x64

1

b818f61d6e...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    17-06-2024 10:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b818f61d6e36173c859095f5a95e4f28_JaffaCakes118.pdf

  • Size

    39KB

  • MD5

    b818f61d6e36173c859095f5a95e4f28

  • SHA1

    cc3f5e598f1b67faf726adfaef58a835564a8dc3

  • SHA256

    e611358e122a9e18a4b372bb26b5f526c5721796d17d3079c4d13d38825fa629

  • SHA512

    f1acfe21be4aadc2c4c6f5848def4322b71df2277e35bff4270645b1e1fd1589494636cf07e6034b24fb371edb98ffb391d9d7a71c59fa674dd37503df886f3d

  • SSDEEP

    768:2gGzpDipGZXYa9y1JAHPNbrjOZh6CttmHaE2FOf22KU57EF1/:jGFOpGNrjOaCttmHaCf2pU57EF1/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b818f61d6e36173c859095f5a95e4f28_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2848

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d055d7d803c4bd68d5503d70c5d44258

    SHA1

    30b1e28ee853d1c0e2a251922e22ebcca3352141

    SHA256

    c5615346a520387c91a637eca8befa1dbb1b9aa8233787dd5748716cf1716dcf

    SHA512

    8eefdd0e0f6c56e31ed5ed46d3ddab71477b47cdc34fa3d43722f62d873b802e04d2e9b647d21bd4f1bdab383096c2fe9259ba0098f3f6f463f86f50630628e2

    Download Submit