Overview

overview

3

Static

static

3

14be97d4e2...18.pdf

windows7-x64

1

14be97d4e2...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29-03-2024 01:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    14be97d4e29d328acc96f2f9155ebdd3_JaffaCakes118.pdf

  • Size

    73KB

  • MD5

    14be97d4e29d328acc96f2f9155ebdd3

  • SHA1

    d71400c9f20c62db948fa2bc0f718953c5107231

  • SHA256

    550e5bf533c17dfd0f21b356e5d28fb7dfe6e89da150905567d9b8eb36bbfbf6

  • SHA512

    44f120213683b8ed1b849416c2906a0dc9703886f2cd69f7a9c8d7043885ec863abeffd8a29d6bd3b0e79b0ee53954e648fe2283ffcd3f01760e157727361b21

  • SSDEEP

    1536:58Pf0ZcUmtoL1uoi2h3mIJxyQKbw4BcqDTpKbYAWejO7XSi2u:WX0x3pP16QKEQJTo9WejoXwu

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\14be97d4e29d328acc96f2f9155ebdd3_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2460

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    dbee99dec1d06162252da149b600847e

    SHA1

    69da6aae57d075b707b66132142e064e521eb193

    SHA256

    c918b5f9c98d969a324b91cf4cc501b80b626a8a34316353a469dae66fc15841

    SHA512

    315edcea6b9596aec984965243d5119ff58301d1bf92cf4a2c3f3027edef97f1608d6bc855987fbf91295e87af95bd8944afef1e7774aff980d24887a971c697

    Download Submit