Overview

overview

3

Static

static

3

1e653943f2...18.pdf

windows7-x64

1

1e653943f2...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29-03-2024 09:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1e653943f211b7476702d37433da0567_JaffaCakes118.pdf

  • Size

    93KB

  • MD5

    1e653943f211b7476702d37433da0567

  • SHA1

    9e84e4f9cbf99e2b8edb2274eabacd01f512f099

  • SHA256

    134d335df6e84b783e3bccda7043af070c4e8b4f0667596d0449a9c62451ff0b

  • SHA512

    9161dc9570a1fe7cfedfce6ae5986c3c5f3985bd2f50c0fa63d2df85e90988b9ebccc79fa968298f52846356689d622a2805bb9928ea13534387ef495bfdfbe3

  • SSDEEP

    1536:O9pGBSiaoWq3FJ0TXit9Vh5FF2Nr4+Ne85lXyy1HF7EpWApO67QxdWf2uITqSS/Y:4mS0L3H0jiJ/FUNXNN5V1l4Q67QxJuI3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1e653943f211b7476702d37433da0567_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2244

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b7097828acc35ee3a8ebabb07eb28ea7

    SHA1

    a8ad2183961069289ff1527b18978413f49be4b7

    SHA256

    dbdab1e7d0242ed6b2d503b4881d8f4b769f504b794053bb7967562ae25336d5

    SHA512

    20204eb42b4012e7b18e1017192b6a554b51e75c8bc4d1f6bbc45081c3b9dd643d2fe851ed7bb46047dabe0a06fc13d758724109ab7d47dc457822d2e943c958

    Download Submit