Overview

overview

3

Static

static

3

25be20ef8b...18.pdf

windows7-x64

1

25be20ef8b...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29-03-2024 15:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    25be20ef8b8e3694fb7a1412bceab564_JaffaCakes118.pdf

  • Size

    72KB

  • MD5

    25be20ef8b8e3694fb7a1412bceab564

  • SHA1

    bf96844b427ca12efb8d59afd7adbc72113bdce8

  • SHA256

    c672d7818d431b293fbc8e6ebc46d7e09525b0177bc38a4220ea553415b72df4

  • SHA512

    acf3373cdfda725534979bfb27316ca8fb039b428cf78a3ab42593953e8a9e4e59a342a11e6c5d872c4ceb483f1bb29da6e6a8d93c17dfbfa258688ad7015419

  • SSDEEP

    1536:P/f6/HHrzUbd4v5MYVW7g1OKSekDOIljifquE+kUWspORGWmY6FxWW+Xmt:Svkp4vmYQgdkiEjm7E+kPR4LFY5U

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\25be20ef8b8e3694fb7a1412bceab564_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3068

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3fc72d2c5c54e2785ea5e6723477fe93

    SHA1

    338ea6a9756c13a70fa433953bda052138f8d6a5

    SHA256

    9b44f39be29221f6fbb799b01a8c240e430af6f75f1a81cf364d59ad5f004b81

    SHA512

    4fc33f941dafe268085e132d8969ff52e25def6c8773ca2cee3ba720758ea72a43fc6bb74e49fc92a1a14bc1e75ff6495715b5028abc13e1d637a178f0540e37

    Download Submit