Overview

overview

6

Static

static

6

1964ce5637...18.pdf

windows7-x64

1

1964ce5637...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    28-06-2024 08:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1964ce5637b6b105646f36ec4720daec_JaffaCakes118.pdf

  • Size

    70KB

  • MD5

    1964ce5637b6b105646f36ec4720daec

  • SHA1

    9874ec03f6e3217c3fd85acc45530f955b4e80e5

  • SHA256

    8fba14fc191fd3416bf633e4fd97deac0c13ac004943f38fea9daf2e23fb7018

  • SHA512

    4906208ce881ec3a1baf7d5ebfb974e2e85aed830ad329b3fb93e831119ce3bc38cd3ef4627d3c9f7ddafcfdf38ba82a485069264bd08e85e1355098375d89a9

  • SSDEEP

    1536:OyUcUE035LykuRHvFRNirXsMgvo71W5KDMUBQfW6pOu26Wxdx:bUcUE85QPFRNQSvo71W5KzBZu2Ldx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1964ce5637b6b105646f36ec4720daec_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2192

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    15eeeac845cf17249cffd25a4f1b0906

    SHA1

    e533314682644b5a74c1f8fc872e51d12612d575

    SHA256

    8d92be84b63a9396e1ee19243408501d27432722a83af102f93e5349359ae92c

    SHA512

    8c5443442e5b11928b00e312ab88eca50c1ff2e7cdbb34c30b225edb36353c7a5bbc0b9086b1f8618def27be671b40ea292f0ccd07940b66341b294c17ce5bcf

    Download Submit