Overview

overview

3

Static

static

3

a6a1aad303...18.pdf

windows7-x64

3

a6a1aad303...18.pdf

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    18-08-2024 11:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a6a1aad30342b7ebeb3a7d6088127feb_JaffaCakes118.pdf

  • Size

    73KB

  • MD5

    a6a1aad30342b7ebeb3a7d6088127feb

  • SHA1

    31f83533ebc078090358780079b9f49dc49fe887

  • SHA256

    f68a329bd11a4db4d32c5b319ebd23c503bfa9f311c58e7de55bfc89edd3b70d

  • SHA512

    234f546f85cca444ccc4e9f766dde0c4fac70d1faefdaef87e5ee855902351f04c26380050c3dc3885fa2f515e704dba362d814c0c6942001ffab5579e625c44

  • SSDEEP

    1536:AVB/K/W64ZHr2rawz6pidpIzvgoMH+cIToQ2wlPVrCI8z:a36mL2raT6pIbVIWToQ2yrS

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a6a1aad30342b7ebeb3a7d6088127feb_JaffaCakes118.pdf"
    1⤵
    • System Location Discovery: System Language Discovery
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:304

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5e4670905f576b609b37696e909cd032

    SHA1

    9adac5703831157b85068fefbd95a516be93874f

    SHA256

    fadad3a367b405538bbc7c0fd5d44524deb773aed42c8f2b365801012995f45e

    SHA512

    7c7ca98507a1f9abfe3e159d089859e05bcd82d8fed243c67aef0733e526f9ae2f9593ab245257a4acf10b823ea3ead3774f3400a7001ddf4af8f7aa0c28b7e2

    Download Submit