Overview

overview

3

Static

static

3

5db1c65067...18.pdf

windows7-x64

1

5db1c65067...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    19-07-2024 21:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5db1c65067af589b8fac27a5ee517308_JaffaCakes118.pdf

  • Size

    84KB

  • MD5

    5db1c65067af589b8fac27a5ee517308

  • SHA1

    b677d1a7a2bf40213e264f437eecf3318ed8f599

  • SHA256

    e9990dbfa4ed46aeeacbd3728788a9113531d85b9e77bbb1039ba19d1b30b282

  • SHA512

    d7a5e52400de506b3b4c1890fa704c4fe018bddd8009d9a2154d136729c30b9a3c9c03a4bd71efadb0ff9bdc6606b86f18df5dcd77372cfb62663d13dbcb7b85

  • SSDEEP

    1536:gEBGmv93Ta/dks65RvVmSAibFUkib/FwCEbnrVWp9JMYtiwep7uz0zWXpO/dvF:/GK93ABoDAibikib/6/SJMMiw87k0l/z

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5db1c65067af589b8fac27a5ee517308_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2400

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8e6e28112789cd4b62d3a8b0711d6776

    SHA1

    ac0f821de13050942611d285b8ac754b53f4d052

    SHA256

    d3270874e51875adafd2b6ad5f6122d08756118f13090e62f6e6309ffa2f7d26

    SHA512

    64fbf73b77827854c6b49dd37ac98d19dd056a38b638425cf92a1e82f811ce24f0d2120136c968ce9cbbf4477a7c4afe14971b72487c873fb226d87097c0f954

    Download Submit