Overview

overview

3

Static

static

3

187a7cd7b1...18.pdf

windows7-x64

1

187a7cd7b1...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    28-06-2024 02:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    187a7cd7b193cbc5eda8ed0b2f8035bb_JaffaCakes118.pdf

  • Size

    82KB

  • MD5

    187a7cd7b193cbc5eda8ed0b2f8035bb

  • SHA1

    eadb8d9ba6c96dc39ef3663850f890cb378a0ede

  • SHA256

    e71ff54497a6637d2d3f2edc9b985c3ab51c878d7f71a1e4dcd4dec1f6396df6

  • SHA512

    7f60e034a2529614fa1efca347d23059623a5ad8612a4e3180aadfa64b247aab50aee0786192109fdc9d922e56dba45e17346c9db8450a9db71949c4e4b0bacd

  • SSDEEP

    1536:KB2xWRPKYD7NMwyLa1tQD4ZhpDspUtwtceW3buhCB8WApO6/mTvky7A:RxmD7alLa1tQsZhpYpUtwtWb8yL6e8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\187a7cd7b193cbc5eda8ed0b2f8035bb_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2920

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    cc8f3c7dee888c6e7848a3943fd24179

    SHA1

    ea08437642273be5c6127959ef9e6031134a8647

    SHA256

    a74b0660cadfdd9219488c682941d076d86e11f2e3267d854f69ccf2a8d1d2b6

    SHA512

    62b3ac1815ba02946561b1ce62dd98bee50b613804e3e55d2bc58a5a751b4a4a7dd60c46684827cdf52be862acd0a5fef34bba319739093557a45ef1cedfb6f2

    Download Submit