Overview

overview

3

Static

static

3

46a6903edb...18.pdf

windows7-x64

1

46a6903edb...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    96s
  • max time network
    19s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    14/07/2024, 16:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    46a6903edbe9514eb8fe9b5dcf10859a_JaffaCakes118.pdf

  • Size

    46KB

  • MD5

    46a6903edbe9514eb8fe9b5dcf10859a

  • SHA1

    28e94ec5ca31fffec8aa4d0d977922339edce7f2

  • SHA256

    467409dc83a43cb555be6105a5530cfca3871cbbc7b9f22e6c1f1702925dc80d

  • SHA512

    9283a2b654a0b64241723d3c33c2049c3adf4e35ca1a272815b0d5160d655b3b83e9dc1f066d0a853ad430d4da67b5a32fea916d74f8dd91c5aac38299459bd5

  • SSDEEP

    768:LIgGzpDx9YeQ4kS7HQfXcrg3xUSahFesCNxslq1PEsF745yUjugd7PypOEjSCdeE:LFGFVejkFesCNLpEs9Kh1ypOEuCdLG6f

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\46a6903edbe9514eb8fe9b5dcf10859a_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1144

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9e1a579577ccc3bd3947100fa5c9522a

    SHA1

    c751ed66a214e0f04b6c1e532a6ca1cd9e316a97

    SHA256

    3cdc9544455a68cb808ff3b42b5e88d74f0d3caf821457d439e2cfed91d52c81

    SHA512

    9e38feaf73d5d67320b8b255b48df52cbb59e04cbac6bf79574d8686b1eb4a617f6028658d88c0d9a1c54c33a955b25e9746fdd7551cd7897c0ada3794de35a8

    Download Submit