Overview

overview

3

Static

static

3

238ff631c4...18.pdf

windows7-x64

1

238ff631c4...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    29/03/2024, 13:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    238ff631c48deba16202c141a92ebb6c_JaffaCakes118.pdf

  • Size

    100KB

  • MD5

    238ff631c48deba16202c141a92ebb6c

  • SHA1

    67b801b37b3473e21a071c47fdc15008752cab87

  • SHA256

    c4e42e20dc59ada049987b38389a4c7d38a241c0d7a471c418d68ffa2a62b4dd

  • SHA512

    f108fb5922bbc04aba9bd540fa033119a5982cde4bd6b36f8d0519b9f49cb587ff2440c15900ca32c8d5284a40cc9b6e324dbcffc0586ca0daa28a00e49556b7

  • SSDEEP

    3072:d9voMk1wpwGi7t1JD/7qhNOiY6QF6NCwf7is:d+OwT7LJ/2OiYYn

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\238ff631c48deba16202c141a92ebb6c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1736

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    365b9e9ea6f675f92e8950cb86fde8cb

    SHA1

    4f854e9a418de02997722176e07827117b913b36

    SHA256

    52698fc41f29c19cc6c3a62c494d2f26504243245631fe0e3466924a28f9863d

    SHA512

    4e24406a1857395a408f5a0cc1ebac63c66237c75a47e025262a69d726b12a37f65def3848f63e617b327fc2e1d3bef5fff7e4d55e2126572333b96fee888ba9

    Download Submit