Overview

overview

3

Static

static

3

63231c94dd...18.pdf

windows7-x64

1

63231c94dd...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    96s
  • max time network
    20s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    22-07-2024 11:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    63231c94dd70863ce378b0d63a9e8646_JaffaCakes118.pdf

  • Size

    66KB

  • MD5

    63231c94dd70863ce378b0d63a9e8646

  • SHA1

    b78a3e1b0a021ecc9ee255896f63d73ea5b5dbec

  • SHA256

    0b4bd4a1c2cc12eadfcf05eaae54549b9cc493489a389cc92785f7de37d468e8

  • SHA512

    9b5582430c2a870d74295a722c6227c256031807b634afce5b2a0fd1f2695640bd2adc791301e8b9141627ba23dec6d3d8b3800b09009d2e11bb9a3220870f45

  • SSDEEP

    1536:gZCvzTKwaFsugIOW6oKCparev9W2bnAm6RUB6s:8CLv0Kmaqv9W2bAFRUb

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\63231c94dd70863ce378b0d63a9e8646_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2776

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c30c8beeede1158321641ec4bae486af

    SHA1

    43861c4737ce37deda4cc5760efeda2209ab2d80

    SHA256

    320156061681a7e1acd677d1fcb959a7837e414338cfa6d134c1020e9b98107e

    SHA512

    751b08979fefaf09f8b31c8b5d6ccbf05080b180be807dd5eb47b1478f3d2dba7e09f7e2783bb5cdec98789edb885342b5b66179f3402bcf58acba862b8c72ec

    Download Submit