Overview

overview

3

Static

static

3

085b6f374b...18.pdf

windows7-x64

1

085b6f374b...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28-03-2024 14:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    085b6f374bf65e9b8962c7438747e790_JaffaCakes118.pdf

  • Size

    84KB

  • MD5

    085b6f374bf65e9b8962c7438747e790

  • SHA1

    3ed466a8469c27ee48c551a28ce2f23167ae7391

  • SHA256

    844539db26fa509bd28b71a2a1f1a6f2d51accfeb9cd35bf088e4485345b3d33

  • SHA512

    befcef23b7f0293021b9196dae130194270cebb9c4047bc559c788f3f8c10040231fa2c80cad23e749bef03ffe54e428f0d2ea6924f54e06475abef0871ae66f

  • SSDEEP

    1536:zXryotPdP+TYLD7e0lhfhDFAVsvhaENLqXZbWx2BLr9bW3Fe+W8pO+fhWQ0rjNWZ:io9dEADxhDFW+S62wFeZ+fcQ01Q

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\085b6f374bf65e9b8962c7438747e790_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1048

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    be574ce3302fea300998c5b25b8d268f

    SHA1

    1e64bc6b3a738ab0838a1adf137e4573925d3705

    SHA256

    0d7fca8aca68b9c199884417aa328932eb8adc2b3ede21bc46f17095e9ba7cb7

    SHA512

    90ee3211dac7ee80ddd504d8e390da08720facd29064df5428cd0d74867ef41ea521cf3c7d4dda4f28d86eda4978986fa13fa403baf3526df2b2f13803b521de

    Download Submit