Overview

overview

6

Static

static

6

59d2b2b543...18.pdf

windows7-x64

1

59d2b2b543...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    91s
  • max time network
    17s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    19/07/2024, 00:59

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    59d2b2b5437b4496cc81a68b8ae4dd74_JaffaCakes118.pdf

  • Size

    16KB

  • MD5

    59d2b2b5437b4496cc81a68b8ae4dd74

  • SHA1

    519e9590aad0a6b57b081469458862805b9cf2ca

  • SHA256

    d7d012391e953da9ff54c1e1c2a0fef382a9c8dc25978d603ace67d299c695e9

  • SHA512

    cdbff7432221444d125164b271bdee57230179fa35370d35befee030be92089ad03c74a1357c5c152845c2df14538cef46fadd373a0ee2e65919f0d293cdee7d

  • SSDEEP

    384:KP5uqk8dtpj1BvyoYX3t/4/YbkyPI4+nUE9EealdoobTRYv:UpjLa/ugbtIRnP9ELTw

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\59d2b2b5437b4496cc81a68b8ae4dd74_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2116

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          3db6034fea76826c63b7de643bf70d3a

          SHA1

          b3cf0523d3353a157c0af49c2df56c79b08fe67d

          SHA256

          bc095eec4aa7d780ea34e30f5ae81793f46b08c92694ce8de42da82ed10844ce

          SHA512

          cf4e5c51487bccd0aa95116225f65353339f0c75e911e4ea6008f3f8bce94e7b555a8dc233c26df115a9abd877b4c6451a49833ffd32f2cc12e83d10fb22bc35

          Download Submit

        • memory/2116-0-0x00000000034A0000-0x0000000003516000-memory.dmp

          Filesize

          472KB

          Download