Overview

overview

3

Static

static

3

36724bd9b0...18.pdf

windows7-x64

1

36724bd9b0...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    10-07-2024 21:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    36724bd9b0237e9eb7971c1830fe5fc2_JaffaCakes118.pdf

  • Size

    75KB

  • MD5

    36724bd9b0237e9eb7971c1830fe5fc2

  • SHA1

    73e67fc4fccfea2b2eacac6973d9ba0fd603b7f0

  • SHA256

    41f3f36ab4c6a074f1926588f4629b938bb24c21060adb87de16e934f9415507

  • SHA512

    79f6ef25e6107c95f7a7ac9907f3892a38d4d60f851b0792ea28f8d68ceb1b4527901589e8ba104b6a118b38cfc1ebac680a9a473f5691dc85075e08aa748b98

  • SSDEEP

    1536:mTM/y+yuUN7yqRJAsrlQvqiNKKSdryaxzaBsWHGIk39zOgAEJWOpOwrGjg0:FBH6Rl0qicKGryax2ByIktzr7GwrGr

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\36724bd9b0237e9eb7971c1830fe5fc2_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2416

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a2b76a7c0fa02c0037b4726731b28918

    SHA1

    c2f342184c5308259e79ad0505c8d60fa69ce0fa

    SHA256

    19c883c6b2bdcf3d5411bd3b2caff72f9a4255b1de24c9b4edbccd80f2600d54

    SHA512

    ebca4b9bb6dd98fbdca6e09a812fcf0bc8ff25a116e33c4372fc042c98c689f987640d1b0f629dfdb9e89cdd62001c38239546a55d7cd8ac5548c029f9ec895b

    Download Submit