Overview

overview

3

Static

static

3

59995f611a...18.pdf

windows7-x64

1

59995f611a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    18-07-2024 23:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    59995f611a711e92c1acf0413212878d_JaffaCakes118.pdf

  • Size

    72KB

  • MD5

    59995f611a711e92c1acf0413212878d

  • SHA1

    ea3cb29f980ab060e8794968275c71704beb8132

  • SHA256

    2a76d35e220b34c889f503a0847ac526168fbe9b555594f2828bd8d2ff4bd94d

  • SHA512

    51dec81f6cd0eec9f2d66c652628a8cd647f9cd792b1a5b9f8c945602c8ca684540b662ba1a0d17929de1a0050037a519d9a14410c43807bab6fe6f7e3cf4756

  • SSDEEP

    1536:tusk+a1eFYusstiI+hnHMWGGqoODiu+AqEV2mmuAqhnRwH/ymN8lEm9Vr:EstazusstiZ+W7P8in65RwqmN82mT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\59995f611a711e92c1acf0413212878d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2072

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f01fc872c4d2a74d9f9c0791f94a7457

    SHA1

    53b7440b38624bf4b0d909d345b8059cafadd791

    SHA256

    0007feac63e176a8e400f6ab9113ec27e645f6c5c4e250f132b3cddea7bc88a8

    SHA512

    d148cadbc45a0130bb60c0c28b880c974af0286fdec0c58c2e7010f52daafa5872dc90a7a3372d450083ceb72de98e7c12411ef16261fbd09a81ab567e5113e4

    Download Submit