Overview

overview

3

Static

static

3

25bf78091d...18.pdf

windows7-x64

1

25bf78091d...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    29/03/2024, 15:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    25bf78091daa72f61ae9e181dd5c3aab_JaffaCakes118.pdf

  • Size

    68KB

  • MD5

    25bf78091daa72f61ae9e181dd5c3aab

  • SHA1

    fb0567f29916eaaa0bad0977d384de0d09ef68ff

  • SHA256

    2ce9d84b42cafd361d9eacbd86f10d8d8494fab1a89b4d9135bccb693c3447eb

  • SHA512

    56ca2fe353d2108e97bef427e5b1b6cac29cd4f49ff98d60244112204c48c8881e0355a056b3495c63cc58d6d08c2dd9d4b72023f05a4b795fbcd044edbe9727

  • SSDEEP

    1536:fL1i7zFyUY9JzTfwGNV9nCAjCf826AdeIzySWODJWOgJWUpO7Y9TN:DEXAv/XCAjk8264eIzyUQOgs7G

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\25bf78091daa72f61ae9e181dd5c3aab_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2136

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1a6bffe2615ce055b30cbd8b9d682041

    SHA1

    3f5a353cb8d5f1b6c73a2668baf138f3c6f78eff

    SHA256

    7d26edd317a211161d8c9275431830aae01f122cb4b2cf931600244f850f3669

    SHA512

    96ef473a275260c8cce17edeac48c97df349bc17f79eafe384a31d1b90223cbdbe452fb4e735d27a0cd1a9dace856c943ea547f9010e2bcb1bd7003d91359a5d

    Download Submit