Overview

overview

6

Static

static

6

679650c574...18.pdf

windows7-x64

1

679650c574...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    23/07/2024, 12:25

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    679650c574d90d04d29d2ec91062e397_JaffaCakes118.pdf

  • Size

    8KB

  • MD5

    679650c574d90d04d29d2ec91062e397

  • SHA1

    f4324474ecdd9f4d0bfd35cf6019f70dc05aafc6

  • SHA256

    4ac3f81bbbcd3db93794a0610cd2a28d98574feb678213f0e4bd40853413607a

  • SHA512

    d3d371ef075ddd18ccf645873cb7fb3148af010e8ada0985125b6b448d77a6badfc557bacc67c38d44e254b734092be8052514df38c8fd79bb8efa90e61686d8

  • SSDEEP

    192:uUz4ULMxL1KtZys9+oOU6a032gi0BpHDj98ONq4XvllUuzrefr7eNE+Uvtnhv:uUz4ULMxL1KtZyw+oOU6FHDj6iq4fllW

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\679650c574d90d04d29d2ec91062e397_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3028

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          b823341b907ba8f67f7412afc46c5d81

          SHA1

          c8b0e9fe6860b99f89732d49a44a697371de24cf

          SHA256

          ccbf5cf8040e8250105d0b18e5d9e2ff5359a3bba65e401355b0472aa315c051

          SHA512

          7e6461d47174082bfb91b2eccd697b8eaf19251fffed7522a91f1461b2aa5685b1307ff6ef1acaabf4f665a4d13e8815067cf89dd4a13a216e31c4540bae561a

          Download Submit

        • memory/3028-0-0x00000000027F0000-0x0000000002866000-memory.dmp

          Filesize

          472KB

          Download