Overview

overview

3

Static

static

3

637244d920...18.pdf

windows7-x64

1

637244d920...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    22-07-2024 13:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    637244d92026ad933551907804cf6484_JaffaCakes118.pdf

  • Size

    75KB

  • MD5

    637244d92026ad933551907804cf6484

  • SHA1

    d51bd0c6f47cbfaa168ff28a2970efad7f253f0e

  • SHA256

    0fb970365b1e25db829aec42ab3262dffa9a0995da40a3381c1fb7eeb1d4b296

  • SHA512

    8c0799d7b91200ed3ea1d419f85fa8f5ed16dabb90036da229ea2cc2914e612a0630048f25595abd1e2ac41dc59c4afbe95df83242aaaa38fd38232e2ec3f33d

  • SSDEEP

    1536:ABvy1XYTFC8fnyX0v7o1t5YVBhAmDRiLZWbpONiWXGtJK1cSR:Wvy1IhCi2278wVXA+RiLbN1sI1V

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\637244d92026ad933551907804cf6484_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2092

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    62ef1edc4e13b2e1b2fd7b5a4dd2139c

    SHA1

    d0dd2820a765126af3f6393cdd964793d7a4a51e

    SHA256

    5903d056b5d424c58eb21cbb47d1cadc085700f1f26d11424803609be45ff7e7

    SHA512

    4962de2f7ff074245b736919a155e89ff1604870ee27d8d6c33f9fcefbfec77f0f526ce7cd61a6e22473d47b02fac72647d48e533ac64361f2d3e52bfdb36fea

    Download Submit