Overview

overview

3

Static

static

3

048fb7a316...18.pdf

windows7-x64

1

048fb7a316...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/03/2024, 11:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    048fb7a3167450ca02808edfacf5dc7d_JaffaCakes118.pdf

  • Size

    87KB

  • MD5

    048fb7a3167450ca02808edfacf5dc7d

  • SHA1

    11fb2d89f46a35c89b49860400c0be29d1df1488

  • SHA256

    5141580076a7177952ba49a03f97b6600c5b904103775ac7525210fdb188c164

  • SHA512

    2a62f739eef523eb91285422c173fcd8e51d0aff6fb62f45f7adbde1e46ebfffcaba521dbf76366cb19fb30b27cdaca05cd2f25744ba760596d974da9e810883

  • SSDEEP

    1536:tnyDlRkKRZoR4r1rhIA84ShdlFvOkNBwz6au11OkERWA6WGpOK1Cb8cceEahWm7y:NscqmR4rVilrlFG6wz6ad9njK168ccd3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\048fb7a3167450ca02808edfacf5dc7d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2660

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8ca9059410c2753e2c79af7fa682cbbb

    SHA1

    12b40a6e9717790b693b54ab8bc9a1059355597c

    SHA256

    95c49a12eb6a582eecbda6982a1ea072dbd4721247f10ec1b7bcfe6e4e1720e6

    SHA512

    e9c07cbbbec85938306342dc1b55355c8a7941b0d7d7921d1beb9d65a5db296cdbc2a5f832cca787a5d6ad037c09a3f4507eb50d4d5274d7e880a6389011cbdd

    Download Submit