Overview

overview

3

Static

static

3

26c84134c3...18.pdf

windows7-x64

1

26c84134c3...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    05-07-2024 08:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    26c84134c3a794648bd30ee5a925faaf_JaffaCakes118.pdf

  • Size

    84KB

  • MD5

    26c84134c3a794648bd30ee5a925faaf

  • SHA1

    b6b8281f56227d1d6dbf64ca8dc8418db26f3eb6

  • SHA256

    6c3f56b61e79d1794853bb8cfdf19d3e19e8368363ed5199848abf318c6741e6

  • SHA512

    0b295b9e30dffe0a7e8d3fd6bf330a62eb54819825ffda0317ef4ba8f2211afeb1e793a64c5b9660091d3feb8a195f1a1631d84f71ebfa27559f5b5eb54914c7

  • SSDEEP

    1536:AJ1lfwvwE8wTj0BzvC8yu/vBGgn0XYvF5a92xa+WGpOKCWWqge6VOrMz+yleLVI6:8lf2f8wTAVCfs5Ggn0M+2xMKsqUOrMze

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\26c84134c3a794648bd30ee5a925faaf_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1944

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    cc9e9cdb0c057b70dd56a5af8fbaa0ac

    SHA1

    52fd340f2eea2644512c344fab51e32d1c756620

    SHA256

    3ac7265f568d441206c72d793c3bddaec8d232c05f5de38bfc09dbf46f63eb62

    SHA512

    c6b5cfe718e6220acdf17469db2579092715c52e179a20c20c51442a5c3a96aec2798c4086303c000fee829f27be70a1b35ef91ed71f2b213d3692aeac44fd65

    Download Submit