Overview

overview

3

Static

static

3

1f1577575e...18.pdf

windows7-x64

1

1f1577575e...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29-03-2024 10:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1f1577575e1f5c825e8a8d0116f59123_JaffaCakes118.pdf

  • Size

    70KB

  • MD5

    1f1577575e1f5c825e8a8d0116f59123

  • SHA1

    27552464575650e76478c618051190caf4544329

  • SHA256

    904a3664a004278a97c1bddf3a814e25ff993c6d9d6fdb08bb9db6d5613f7ab8

  • SHA512

    bf0374f7dbf1383fdc23c07936116d010fa062d030b397cb650b95c6821208a790b4485685170491d02547432743ba7059fa75240a2f50c0abb18f2da631fbc8

  • SSDEEP

    1536:R7NlGPM8NXFSsclaZQ0GB2BaE0CWxuNCpbvDdHwtctWapOnr0iO/A:VNIPjSbaqXB2I5neMvDVwyenwiOo

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1f1577575e1f5c825e8a8d0116f59123_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3012

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d3eb46aba5285c26a3e1e8da8569872e

    SHA1

    c8da99336a152a63dad84551990cd39dd5b6e168

    SHA256

    547af24bfc48250f733100b9b2bf86cd7406f4de21f26165fe813c57a2b43b7b

    SHA512

    4d9a2b8d2b31ef89012a935bcaf38c8215a8cc4a763d53fb1e380199f93f48a13a94d8207e20d94bd572bfb74aeb967e7452d9c8137697726245ac82ce638db8

    Download Submit