Overview

overview

3

Static

static

3

4b609dbdad...18.pdf

windows7-x64

1

4b609dbdad...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    15/07/2024, 21:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4b609dbdad51feac0fb8086ba33b9a1c_JaffaCakes118.pdf

  • Size

    81KB

  • MD5

    4b609dbdad51feac0fb8086ba33b9a1c

  • SHA1

    84444c3c14254d32aa2ac452629cdb852b328429

  • SHA256

    9eccd723cbc3f02a05bbb3fb357a39e5a11c716dbed6a70acef6663e33dac4a4

  • SHA512

    353e00c218843c038f2201cef2f081007f3cd10b987eaf44df050d39e60c51ab35c455d58f947dffb0e50150e42ea56e397f73cd9a01566a7e5841a7c10f2479

  • SSDEEP

    1536:L/JxrUT8fnXYGPht3EOUFcyzG0lhMX16WOpOaZEWRQN8cnlKzCqiQ8qpW:dh/nXbhNGz90vaZVQN8cbqx8v

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4b609dbdad51feac0fb8086ba33b9a1c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2172

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    863a70dd1ab5f94bf6ca55bf6af67f03

    SHA1

    02de5ca8e8be7487da8df60dfcb093d1c0ec94d9

    SHA256

    507e091262c882fb6b0ffabbad6f0ca9964eac7935fe0043cb2e862bd9c6a0f7

    SHA512

    b26ca97e99a013a4c65543d5055870d9e311749ad4694f0e1c2bdf763d5d702838223b6239557af8c7e562ad9fc10fef33a39618f0b19d39cfd7b9419f5d7040

    Download Submit