Overview

overview

3

Static

static

3

167f5a06af...18.pdf

windows7-x64

1

167f5a06af...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    27-06-2024 15:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    167f5a06af32cda62acdef888001e893_JaffaCakes118.pdf

  • Size

    80KB

  • MD5

    167f5a06af32cda62acdef888001e893

  • SHA1

    df71508104e7800e8802861edc21727159a1499a

  • SHA256

    8d721c48886f0f9c18003b2c12904400c96c72ada1260262925873392abaf6ea

  • SHA512

    9b36eb9b390d2a69eb83a6d2261fb09acbdb97c8456b62dfb0a7cc42578b36bd8ce8a069f7cd74ba3cc506c9d277497907205b0df5db8166cf7ae08ee87f558b

  • SSDEEP

    1536:q9FVs+39thmujUnZ5afKyvtgigmTpHASZSvfwS7/vnWU48eWUpO7kGsjGT:es+39JjqafKyvtgibdASEvZ7/v548J7R

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\167f5a06af32cda62acdef888001e893_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1732

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    30905f337bdd420435614911c2a3884c

    SHA1

    547b279aaf615cc4dc7a396b385c680ec429f190

    SHA256

    caba4ad94539e0fe07786867114d08f887a2fddef90831cce6e6f6de03fea6a8

    SHA512

    6cd8cd927aaffc1adb3fb8fc77744d8da1525ac5fe44a94f58992041467775dd10e6dbf1c28c4838845d753d069342de2ceada3c48ce9e8adc0292acad6e8087

    Download Submit