Overview

overview

3

Static

static

3

1d632bc410...18.pdf

windows7-x64

1

1d632bc410...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    29-03-2024 08:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1d632bc4100f8b7a25f316b55fcac828_JaffaCakes118.pdf

  • Size

    84KB

  • MD5

    1d632bc4100f8b7a25f316b55fcac828

  • SHA1

    b8051caf274d3cb5bbc1c1de2387e146c2344f45

  • SHA256

    b4e56c7149557a36388eeb1a6266c381126565edf32cacecbb74984443708eb6

  • SHA512

    11adf8bc843c8527f451880045da64893d25155d7a8a608e4c22c5bb21299a9e0dbefd7214dba8c16c578b8571b932a540d6e83e91b28a057322c85a33f89355

  • SSDEEP

    1536:svO0l3Y/xh0RMzi/aB2lKn44cVjbenulF1GRu1AlW3Wy0RvdW9hWcpOmGaw:Sqxh0RZO44c1enulF1auqW54m+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1d632bc4100f8b7a25f316b55fcac828_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1540

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    207c9bc2f01faa405b4702329ab92121

    SHA1

    78d421475d81f92eec2fae13d10b4d0eabbf27bb

    SHA256

    b1907c2fad81e9bace156c626bf5b3209619888e015b4c9655718bc03c5df2ed

    SHA512

    48d95dc33a6f422af93d0605702fe4113257fd7daea4f18d4083eaabb965312d0c1dd6eb5fdcc104f05058584b034f7bd1419e2aaa9131ef14f2a2e6848ac0cc

    Download Submit