Overview

overview

3

Static

static

3

1f25ad5580...18.pdf

windows7-x64

1

1f25ad5580...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29-03-2024 10:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1f25ad55800800d7c18a6a15a91b908b_JaffaCakes118.pdf

  • Size

    71KB

  • MD5

    1f25ad55800800d7c18a6a15a91b908b

  • SHA1

    01904dd38b08b74d34fb6a035723e213a7fbb47d

  • SHA256

    fad404fd0210e5d02da3555a177942482b172f1c564e0ed2b21f190a1483f3d8

  • SHA512

    698c2899c611fdac4c9b59ea388c18cd52766841c37bf5aadb5780cabcde6cdc2069cf8f6f321da984cd37fba4d385e37ea782be92ee25d3864a3bef79b0b450

  • SSDEEP

    1536:ITh9Dmyy/JccWzXNaBj4u99r9u9+4miZzvRWkNpOPaWjKHRaRtGpAmN8Rd:sh9Dmyy7I2n99E4T+vaPMHgRtG1C

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1f25ad55800800d7c18a6a15a91b908b_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2496

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    691ec9932b46b3c11137fcf73c3a846b

    SHA1

    61c518bd4b08c62e42d8ad0c5cb5736b26e6c7df

    SHA256

    0ead899bf3af53433e48fed824a4a7f2f9dcbd53d42baf2dd5e375ea43f67be3

    SHA512

    af8733cfdc784d5dfd5c06518128f073b7083b01fe0cf0c6df323e252dee197928cee890c073a23a9f5b6dba9766557474ed208e5bc266efa05c2f121ee7389a

    Download Submit