Overview

overview

3

Static

static

3

1578b05987...18.pdf

windows7-x64

1

1578b05987...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/03/2024, 01:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1578b059873e3fb98f408728c7cec703_JaffaCakes118.pdf

  • Size

    34KB

  • MD5

    1578b059873e3fb98f408728c7cec703

  • SHA1

    3dc0a911bc33570ddcf4d79b4be8d0170dad6c46

  • SHA256

    cae557e1abb7ef2f26bfaaf890a278401c74557986ab6769e6435dfe09047cd6

  • SHA512

    1053c2f55349924295b05fc00ae9c3e68c252e5b3391224a54543285809b5c14f7e8f526ec41148e202e95c5f3d80b5507be8cc1da3492bfe431eee93eff3aa3

  • SSDEEP

    768:RyyRySsrcRrks+8ZLi6kesep9NCD8onTToBLtL:sgrYaL6eID8ETgLtL

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1578b059873e3fb98f408728c7cec703_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1740

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    784283ed316d9c80426a0f8b85b6015f

    SHA1

    2fc9c7bb2e7a93befd1d6d1cab738358f6ab3829

    SHA256

    53d3f17f0fd1c28d3bb4124b94a5268b30dc6f4619bb89a9d90db71f1f1f301b

    SHA512

    3ee4ba0c99b487a747da221f428794be3daec64ea5ba407ade3c2ae8a714acd45895b6ad7052ce70c7c53c44f03cde7b40627643b8929285497a8ac425da4af0

    Download Submit