Overview

overview

3

Static

static

3

19a6cdf49e...18.pdf

windows7-x64

1

19a6cdf49e...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/03/2024, 05:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    19a6cdf49ee329cb22a8d26964cf826b_JaffaCakes118.pdf

  • Size

    35KB

  • MD5

    19a6cdf49ee329cb22a8d26964cf826b

  • SHA1

    58306db7cfe459610851ae99ea7f9d44532d1686

  • SHA256

    f5c664a25a9898ed6cbe3f9e35637dd6d3ebf83d53e82fb4400d898bd9bd2f28

  • SHA512

    d7f1fd4ab7c16dd4d788f81f3820643efa79be146c84d49f1eced8da5c04aaa56d347ff1dcb77334348b3a34b055517c7853f2a0bbfb626f5670297f1b35fabd

  • SSDEEP

    768:z2Zlnvt/PX4XKCxMCAvhNU2VYhbwZr12VKaE:qF/mjMLvzPYhber1jaE

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\19a6cdf49ee329cb22a8d26964cf826b_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2952

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    72ff136071529edd2dbd427e8e6a439b

    SHA1

    a5f3875b598ab27b4e2b77fd7aaee3619ec5757b

    SHA256

    3ff69f661e21a3109c35afa1f74cd089ccb44629b00a09d8ef5ad65c0492ef39

    SHA512

    5b5d5e63810772678e1adc85e39fbefc30ff636e140b0f9146215a6319a0a5f188e02f38dda7137227b0d6374220df77b8f60c9deb2d7580a034f718adf4ef43

    Download Submit