Overview

overview

6

Static

static

6

1ab7f23f3e...18.pdf

windows7-x64

1

1ab7f23f3e...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    01-07-2024 09:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1ab7f23f3e7424d2176f672be579fe54_JaffaCakes118.pdf

  • Size

    35KB

  • MD5

    1ab7f23f3e7424d2176f672be579fe54

  • SHA1

    2dea26d9e95279e3aa741f6d98b43c1e339772eb

  • SHA256

    7ec75f163d9a69345de36e8dc2db1d11f28daea72944db41f404b4e8a497cd80

  • SHA512

    c0ee7ced4150005f87cec2951fac52cbafcb72b4eaa3dbde93a7eb8034705f23bd86c1245ca165a360da97e62429227b719dc9fcb2d6c392aaba98a1b3f879ee

  • SSDEEP

    768:Md2enEiN8rDpZaG6FdnO0FUlVS2BB0596FksJbhGMGudfapWzzIwz8:Md2enEFsbF1O0FUTfFjhJGGfFzIww

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1ab7f23f3e7424d2176f672be579fe54_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3056

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6cf3ce816e32ff53786713339ada8c8c

    SHA1

    c4e02c6698d20d44c5f2340dd720a9b9c1ac58ea

    SHA256

    28a172582d7af42ff7b45975e239f37934b934fd137293b25a13536cf4dcdc6f

    SHA512

    959e94e0c06e6583d604eeb776a60d52fe500ea2293860455578969bf68a396d8226b6b806e3d4c8bf789a581306eacef337b2cc249f9aea27806b0b3789a60c

    Download Submit