Overview

overview

6

Static

static

6

1b4ceb950a...18.pdf

windows7-x64

1

1b4ceb950a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29-03-2024 06:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1b4ceb950a6e4d5903ac4de5cc7012e9_JaffaCakes118.pdf

  • Size

    60KB

  • MD5

    1b4ceb950a6e4d5903ac4de5cc7012e9

  • SHA1

    889766eea80304f7121ad1c6176d80764c61a1fb

  • SHA256

    8749c34122e5a1fd38eb3e72054de3f1cae17c69fd1943e5bba45032e92330fb

  • SHA512

    0bbb8e5c71ae904e7769d21abb78b6dcc72f3e48f52d4d861ac116e380e070584e78e0f6711ec9612b16172009d27535ced822ef979b76aaa92668a368a95d0c

  • SSDEEP

    1536:sS1H4POp3kkRRziCJXAqx7x75AXfEY7EoF5BheZowW4IAwilqWQm:zV4Y97i49xt75AMY73FHhCDpblV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1b4ceb950a6e4d5903ac4de5cc7012e9_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2032

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7ca594b9825ec788b34575a5302473bc

    SHA1

    f1c2a2ebc392e39310fc070d634fa8e1f2de6db8

    SHA256

    e0d65df3b81746faef6f009f1c9536159e8561027de528ef1611b0a4108e92fe

    SHA512

    2198938b623618ce0ac5059638efd347865beb4d7fd6a848b07c1a47c04c02c6164e88be473ba8d929faba898b1e7f51b523925313c680fa45cbf2fbd689f507

    Download Submit