Overview

overview

3

Static

static

3

295f5ba82a...18.pdf

windows7-x64

1

295f5ba82a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/03/2024, 18:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    295f5ba82a0643c66036112c80e3ee39_JaffaCakes118.pdf

  • Size

    83KB

  • MD5

    295f5ba82a0643c66036112c80e3ee39

  • SHA1

    8e08b8fc534bd8c3303a9bbd2fe60084720ddd10

  • SHA256

    8acc9ffb253b60f3ad2e7e16ae046bf5f4517586031b7e9817be6bde4504ea51

  • SHA512

    a1bf01ac7faa1df9a7d2d063d2d34c057057a9dbe9f1841faedf0b03554697941714a36d953fdd4e59186502d293f5ce0bfd3e48acccf683cdbaaaf12d12acd3

  • SSDEEP

    1536:aQdRn0Vpp0uyds6js28Txd9lhgAWiROQqUDkEe+SoXUyY1jaKzrWOpOwrKWtD1bu:P0CdihTdrOQqUDlcmIjaK0wrfxb/rfHy

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\295f5ba82a0643c66036112c80e3ee39_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2224

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2e1eefd44e1149fbe2db13f2307ab4d8

    SHA1

    e35f06e0f918c9f5d083c9fc824b73fdf18e85b6

    SHA256

    f9c8db440b0c9e935a46f48b1bf49754b760bdbe07a06455b9852e92492f09d7

    SHA512

    e4b67fced84ec3cb234dfc5b58ff4c8fa0da004f84c808bbfe18bb5ba950136d59a7bd4818afba41555e8ed8d41a6cef1497b5772d481e5cfd3dd8b47a0cd368

    Download Submit