Overview

overview

3

Static

static

3

67e4e83d17...18.pdf

windows7-x64

1

67e4e83d17...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    23-07-2024 14:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    67e4e83d171fb64dbe6c2919ceef3822_JaffaCakes118.pdf

  • Size

    71KB

  • MD5

    67e4e83d171fb64dbe6c2919ceef3822

  • SHA1

    67977d1413d5cc006777451692a62f1fa715e279

  • SHA256

    5405dd52607842279151d7379707f79d9f9529a038b4a9c6bf4e591c2f93a400

  • SHA512

    6e5266ca6eedce368e6d5841e16020befc3eac3a33ca090ecb4fb80c2eaf6c241eb339ff8a65afcd0a6ad1631fe8c6bd8b03f1657b5ea7a0557778da96a2b141

  • SSDEEP

    1536:nm6wrXVa5+NZ7Fyb+1IDczvCEXf57oAbc4bGjW6pOu26WBCEKGduyYemAr:m6w7VG+No+cQvCEto94iou2iELducd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\67e4e83d171fb64dbe6c2919ceef3822_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2960

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    92d7df5964d42c70472d81fac8f33bcc

    SHA1

    209505adc5527484a26777700e0f9b05c6753b1e

    SHA256

    8c8c9cefa8137e273d60c70e1249fdb26baf5d4114920c9a6aa5d58734f711e0

    SHA512

    cf3d296f47a9ff06f0a2d156f5d328847e178186f8bbac17ac77a2f429684f60848848b8425e5ce9873e9c65e384de9d32d3bb1b5f9a1ecfc5a7c3bca7260958

    Download Submit