Overview

overview

3

Static

static

3

0a6d9eb7af...18.pdf

windows7-x64

1

0a6d9eb7af...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    24/06/2024, 19:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0a6d9eb7af1803e43038e962bffe5051_JaffaCakes118.pdf

  • Size

    80KB

  • MD5

    0a6d9eb7af1803e43038e962bffe5051

  • SHA1

    7f2454d68d74200ad87ec8073475951ec597c760

  • SHA256

    9a872c6e31f1c3550f582bbaf4e4a385fddfcc1ea8001e40148dcc0a209590cb

  • SHA512

    88cfc3938dc454ed07827aa11a93abd523fa3302609095438e4defea427c06f56185aa3fbf710c04bd90d5f56090a59b46ba1a390188369562f38cfcb297cc24

  • SSDEEP

    1536:pyW3rzPRmbNcBXcNHa56ag8mFE4KWGpOKCWmdSdDgjFIa2Rc8bitF6:lrzPw6V75/g8vQKwd7pIa2Rc8Oa

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0a6d9eb7af1803e43038e962bffe5051_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2576

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3964b7b21ba09322338d87bfc1412370

    SHA1

    4ed9c503adc16e6e753acc1d61dfbe2c83a3559a

    SHA256

    4eacff7c53243ddea1842cdeae6a53a0797f815649130bc1929bfd07498826b2

    SHA512

    445d1fa36f4dc09ed02e3abea6ee0f08cd416bd14ad8f4ee761515721e67abb6aa10277b4014b36157247703666e6109b9ed57b337e5e830e727ab1556fb2563

    Download Submit