Overview

overview

3

Static

static

3

31b6c66f34...18.pdf

windows7-x64

1

31b6c66f34...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    09/07/2024, 19:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    31b6c66f3468461efc4064ad5cd53c93_JaffaCakes118.pdf

  • Size

    83KB

  • MD5

    31b6c66f3468461efc4064ad5cd53c93

  • SHA1

    5403eff3bb73429e1a46b43ec99df7f1dfa3f7f2

  • SHA256

    55a7cbc4c39c77bf3fd4f44c4a73220190683c9e69fb4ce73709c3b50656341e

  • SHA512

    263c278b92a5c75e119c9870538c1ded59e9b4187ddbd731d1eb52e41c311a8637c0f7e1405f938390627f2c6d8dfdfe709360556ec644d303a1d1ea9014b362

  • SSDEEP

    1536:y6C227W2bGkvW4ybEhH5mmt9GyDSZo5aGiESpZWbpONbEl96WsHMKR0bHLvnK+y:bCvW2bGkvyb4Zmmt9GyDSZqaGiE8bNbz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\31b6c66f3468461efc4064ad5cd53c93_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2064

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    96165acae9bdb09ad8120ed681c81aa4

    SHA1

    cfe0dcea18e7126d869dbb7a4ce79998fdccf249

    SHA256

    7d81b622ff54bbcb870e41ad159ebb8a8d545a51e3d696913991e33ee850f0ab

    SHA512

    7b9c793541393828d721617c0a60096873e49cc969c0105899fa6c0fe3919fa05575962e5d48abce7bbbdf224caafad1b7b99928e242c7adadd7f4bde6d4a2ca

    Download Submit