Overview

overview

3

Static

static

3

637dc6b191...18.pdf

windows7-x64

1

637dc6b191...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    96s
  • max time network
    19s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    22-07-2024 14:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    637dc6b19142918ee63e7d3d8385b4a2_JaffaCakes118.pdf

  • Size

    40KB

  • MD5

    637dc6b19142918ee63e7d3d8385b4a2

  • SHA1

    80dede36138b49ac89959b658c59ff97916a7d1a

  • SHA256

    896359e53218133bda829b6bc4b2c2f220a283cf928fd74d18ac527ea5b2cc5e

  • SHA512

    e64b1e19ab86be451d72cfb934f3a0743ddc369a1ba2f5df2913aae923842f43978e91da1d18800202606988cb73f0e7bf50a6aa6838174b848fe3f7a0709491

  • SSDEEP

    768:uJoShH1SofIb8chFS+q5Z2YHY3vIbR+gcloYMb:E1SogbBhI+RsovIbR+gc+b

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\637dc6b19142918ee63e7d3d8385b4a2_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1272

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    317e4420dc0436b5536739a947e16a3a

    SHA1

    b239034c7c9ec7c5911d2be5e5aba5d840c69a3f

    SHA256

    c4519f22688b4b5803c9c2df8c4036321d8ceb603265033079e2f788e2a8d5af

    SHA512

    caa1921971e9b143f33c6e3bd5fa9893ca90e63b787ce75ea020b930ed7e6ba133740ff8b65e198e0592d172523efc04f150eccb05f4f2aee2967760bbc9e922

    Download Submit