Overview

overview

3

Static

static

3

19b1482396...18.pdf

windows7-x64

1

19b1482396...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29-03-2024 05:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    19b148239655f27416d267b8772b7572_JaffaCakes118.pdf

  • Size

    87KB

  • MD5

    19b148239655f27416d267b8772b7572

  • SHA1

    f0e78f401d7b7af3f723d41aee269c5b307b2198

  • SHA256

    b16b4d922195540cfa67bf3f06f2038b7c9c19687377fc863f0331e6a42821f9

  • SHA512

    6f959a8e4dd8486f3a4b1de0ab9f7ac8492331ef8c7b95e0507deee6115a37ea48429c6749f138e9656e3beef32ac8d927d5d957f07fc78f14626a7597cedb73

  • SSDEEP

    1536:JwD+Zk8bsRPS/7HarJN+8KeGBHWKY0z/wWmA0lHE2t27uv7mTGjFWwpOSH8t/:238IpS/7HaNNrIHWKY0CAcH3t276uGjc

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\19b148239655f27416d267b8772b7572_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2240

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b99c04aa27f48aed8e1974824d5aca1c

    SHA1

    99043c8af631461116633e2cef4a66ebaea6e20c

    SHA256

    2bc013d0a432a3f390d5f2fc49cfdde65e0120227ff73f1e57b168db5e40f103

    SHA512

    a62bf09705fb477c6d1b5c442fb8036946aacfe3aaac95eae3483e545e76b59e8c7cb319d88ecad6b715e4cbbe8afe4167bbf12816d5cd209ea466e51a34a32c

    Download Submit