Overview

overview

3

Static

static

3

64ee4360b6...18.pdf

windows7-x64

1

64ee4360b6...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    22-07-2024 21:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    64ee4360b6f238b2856867c8d5177438_JaffaCakes118.pdf

  • Size

    38KB

  • MD5

    64ee4360b6f238b2856867c8d5177438

  • SHA1

    0724e92ea778ac795a3384c2cccf067291f6ea19

  • SHA256

    833c43106cb048cfe17e8a160f9969a8c186026b9f2d759c81f56ce36f11f677

  • SHA512

    693178917aedd4a26e5df05cf4dd009df066a4e1a88424195239fdb367405cd9a57a88f3e760e0b09b53859f00550f9bdd2b9781bd9f80623314443d4696a4eb

  • SSDEEP

    768:vgGzpDZ9U1fZDLUyGFspxR7WjkcBp03fW16+yDWSYZzl0R97Q:YGFd9w97WjkYp036YW/Vl0R97Q

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\64ee4360b6f238b2856867c8d5177438_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2152

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    bf9e5e7d90f589e478761495fd44ecc0

    SHA1

    d00fe21756394e699907f33c3a9d4839363ffea3

    SHA256

    72e4207c061fca44baff07ba656d60018c5226052cb570f667178142e91bdc93

    SHA512

    9bc02c647ec5e5676a2e2cc881c2204ec3a2e60b1e7c6a532cc933d4c034b2c3b0c8465af901f9a8dfe3facc17601c175a0142cae28dd59e92eecb4d82576ed2

    Download Submit