Overview

overview

6

Static

static

6

5b65884af6...18.pdf

windows7-x64

1

5b65884af6...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    19/07/2024, 09:39

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    5b65884af6eb11b9d1cabda9e75c94c8_JaffaCakes118.pdf

  • Size

    7KB

  • MD5

    5b65884af6eb11b9d1cabda9e75c94c8

  • SHA1

    afd87dd5b9bbecae08df8c71ab1db76982b13304

  • SHA256

    5e76fefaff0668a9127cd4ec2263d5764c288a9e442d904c7cc545a107bc03ad

  • SHA512

    9cc7fdbfe5f9ae8eb0724bdbe0800c21c7254b7bcb52cb6f59b0e5e42f72d02e543f443e0069dd593b6feb6cccd4a078eef22efc2a4fe0abbde3d7783975b799

  • SSDEEP

    192:/P5u1wkWHU34hXSX5IxGZWHgQ+9PNmOCMJNDKYNutl234EYf:/P5uqkWHdiX5IQZWAQ+9PN8MJNUtwbYf

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5b65884af6eb11b9d1cabda9e75c94c8_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2772

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          5eb4ff476e6f7ed18ef7422f25f7f932

          SHA1

          9aed3a2162ee02197deff44383de1b7044badc0d

          SHA256

          81ac46cd33252b68d52127eb7d30243e8abe4e9141008ae156b5a3092420a6d4

          SHA512

          f94b02fa363bbeb6d094c6cc9878a97d2196559d67309e5c30025d3e5f4c1d8ca2816fa0e13bc59641b63e484ebd42917e568f4a9ceee76a9406c3f43525beba

          Download Submit

        • memory/2772-0-0x0000000003E10000-0x0000000003E86000-memory.dmp

          Filesize

          472KB

          Download