Overview

overview

3

Static

static

3

46968bdce7...18.pdf

windows7-x64

1

46968bdce7...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    14-07-2024 16:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    46968bdce7954fc4da6a7a5230db81f9_JaffaCakes118.pdf

  • Size

    86KB

  • MD5

    46968bdce7954fc4da6a7a5230db81f9

  • SHA1

    d15ae5bc250c3c6c41b9f74a2a6a76aa21cdbb0e

  • SHA256

    62fcec0406dbf1d40a96671b17a98fe5614e2e26dade62e3336f2a0dccaf0868

  • SHA512

    d8187f119ba4d77446cee1a5ac8f08508e44114e79a9a6bbf36f633e1f59a6761cc1989a49890e45d5608c33182b85c38127e7bf2b35beaa0071651a95245741

  • SSDEEP

    1536:wioXzL1AJyGygi6lxfSSm5yRCp8ed7rIeL0Rm4a9heWApO6XZuFW1yMHHunyw:MXSIGy0jfSSeyRC6ed7nMmN9368GybF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\46968bdce7954fc4da6a7a5230db81f9_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2460

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9301e2d7d1713ec2ab841347a2095979

    SHA1

    0bc9161cd2b5e9a05fc2d9539b328133aa2fce6e

    SHA256

    5cd69286cdfe2a732aa0b04869e485b0737d3c5c8a1ce6cd36268a75b44f50a7

    SHA512

    76d1840f21cdee10a073c5e260aef67849eb7fe04c922323a8a14d36dfb0f2ca2f0eedf2e516643f69950d427f2e5f670c9967536d79a01e63fbd187623e4f47

    Download Submit