Overview

overview

3

Static

static

3

220527db3f...18.pdf

windows7-x64

1

220527db3f...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29-03-2024 12:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    220527db3f180072f145814979e063da_JaffaCakes118.pdf

  • Size

    78KB

  • MD5

    220527db3f180072f145814979e063da

  • SHA1

    f367eb680260c638ce6625338f134ea20202ea82

  • SHA256

    a9d9cf9a0fb11709a6ac0a2d9cf058c4b600e9b8586cb606fd8f33c023e6c009

  • SHA512

    dfbd15a62c66b9b0babfbc324ba2010f0b26a58d86b08a21768ee3ae0cd890ab37c4deddb9a9f9bcbff39584d7dfdab0ff373a6c0fdb88dd98f6603bb79c64f8

  • SSDEEP

    1536:29X7JAQL0ikvcHdJ1vV6B0vvDyxeWapOtQHWB7a4A7wdB00znU:wtA2Zkk9J1vV6B0vvDyltQ3dwA7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\220527db3f180072f145814979e063da_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2796

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    71cf45b2235d9f3746e7d53e0d23d5a5

    SHA1

    bad1fb018cfbe7cb795e34b12c8bf40fda8621ae

    SHA256

    1d2070cde1ee9de1c9538e892bc578c7d72357e3723f1e1aa0bdd14d064510b6

    SHA512

    41cebab7450c032061ab3fa41a7f27f25f8aa3e76d8276c981e5ea45e11ce77c07beee7052e6b62da05f22f189eab4ff628ea7952e17f2b854e800207a9b2aad

    Download Submit