Overview

overview

3

Static

static

3

5cecff91c3...18.pdf

windows7-x64

1

5cecff91c3...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    19-07-2024 17:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5cecff91c311c0a4c912f6ff3ac02765_JaffaCakes118.pdf

  • Size

    115KB

  • MD5

    5cecff91c311c0a4c912f6ff3ac02765

  • SHA1

    f92914d634084328249e9c8d29bfcc8e2d5c19ff

  • SHA256

    6b1fa7fa6a61896f1bf7e18e27d614b0b594b50b0b11556674acb453bf29b598

  • SHA512

    aa427278272f33d8ab3132c832a5bb2b690997b2b9bf6027b175b7b4cb2a847c495a31789179684e5b0059f31fb1116b1a01eee0b7250b10cc83d00e46fa2ae4

  • SSDEEP

    1536:55ctcRZ6gyWZeoa+o4+D/ODMwnc4N5WYrvhMET8T/as+13WApO6l7LjW9rDKLEWU:jc39LX+o4EVGWYrvhHT8Lp+U6JLzU

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5cecff91c311c0a4c912f6ff3ac02765_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:304

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    09aa99c626ddc1082fb280f94307e6fe

    SHA1

    1c8fb5be7f9f2eb01f8bcacd3be1177c922f6532

    SHA256

    8368b7038044d166ec4c5b635058c376fbb1b8dc979cff07077bf21503b30ddb

    SHA512

    9df43479deb1017fef9eb2cff942a2eba098223bd1ca5ad9b84e700480eb422aa13d40f20a8c755f6dbbdb2d3962626e754b8698687df72938d585c5592d4f7e

    Download Submit