Overview

overview

3

Static

static

3

256a9585cd...18.pdf

windows7-x64

1

256a9585cd...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/03/2024, 15:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    256a9585cd1236aa975f614f7fe8d58a_JaffaCakes118.pdf

  • Size

    84KB

  • MD5

    256a9585cd1236aa975f614f7fe8d58a

  • SHA1

    7836ffd2fbd2317c1e9121fe97542415c0ef3d5e

  • SHA256

    c0f9e2d431d0151ea40b6f461c9fcd55f25d1d078da1085ebadac0e6d9757289

  • SHA512

    2f439bb988511db63f83681e819cb03e478676dc9e1b17d367df22b33d52e4336b0bcd9e6e33e3ea95fe3d14bab4add029e581d7f1e32f0adce69e4ca5592e94

  • SSDEEP

    1536:t0JEp7r6pz4/lui/xxKSh7IhGpW2GXdWCj4WYWOpOwrKWiJqgtPP0EfT:CgIzKs87KaMhGuj4WVwrMJdPcE

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\256a9585cd1236aa975f614f7fe8d58a_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2876

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    467c1b7ce8f76d3738319845c856ae3b

    SHA1

    c204c4f8c7ca5e0c7a67c905468dd453845055e0

    SHA256

    649efee3c0ede33976b28c145e88159df229d3059c3190505d6955fd0cdde1c2

    SHA512

    2f6cd3b01b088a3e734a05ed0257c96bd4b87a036413152035714403a5455943a686f63c8109c462a379a26d9f75cfd79d583745572a7779a5b3adeee307f2e9

    Download Submit