Overview

overview

3

Static

static

3

0562796aa3...18.pdf

windows7-x64

1

0562796aa3...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/03/2024, 12:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0562796aa32eddadd000f5bf594674b2_JaffaCakes118.pdf

  • Size

    81KB

  • MD5

    0562796aa32eddadd000f5bf594674b2

  • SHA1

    fa597a680537bf04a7f4c37306a3ffa70eec079e

  • SHA256

    29c2b8ffe6c35c944d12ce97fb78a5274f92fb0160acdc893b91c15c57c7442e

  • SHA512

    565fa16c5d077e8d0027c37b9350f1a3d852e082892848396b610942fc46d67347ac8595bc60ed633234abf85eae18e407cb24fe50799b0158a1eec70a94d16a

  • SSDEEP

    1536:unK0nNKAEFwts+No7FXLNL3vBCuQHIHahUEnWGtKmq7qf86YrRpEWUpO7RTL:FAEFws+NoP7BRfm9U7qfARpH7Z

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0562796aa32eddadd000f5bf594674b2_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1924

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f72bfc7e6c19ecedfb1608386de40280

    SHA1

    9dd482af5b069a9072b151ef6d4affa01addb406

    SHA256

    9257c27ac16af7f5677d0a365fde360d149b8df4d3dc4182fb3632ee84a91dd9

    SHA512

    7fdb2b53e7de05c56bfb54d20a9e37ce9171751125145a02bb170607dc9f7963d8057af95faad617d882500710e7d2c6b2aff0e57d6899caca7587ef1d4d2e7b

    Download Submit