Overview

overview

3

Static

static

3

bd48bdfd21...18.pdf

windows7-x64

1

bd48bdfd21...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    04-04-2024 16:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bd48bdfd21ac9b56ba041dde4b0f2db4_JaffaCakes118.pdf

  • Size

    76KB

  • MD5

    bd48bdfd21ac9b56ba041dde4b0f2db4

  • SHA1

    b7c6eb63a4a6a2d5cbd13a7b6233bda7637bc5d1

  • SHA256

    d7090f1edf9550881c88232c163e1e633e3925b6a05508050a2afb12d6e5ef51

  • SHA512

    74313580095125232f01198c65474984e586d79388b467fab654590f5795c590a8783339713bcc3f79a1e9e3661dc33f1b32e8486affe84734f10c0dbbda9803

  • SSDEEP

    1536:DK7DwEJWqoIXB1I3dCZJDy8Awua8JV9q0XGWUpO7qWwT5DnmGiAaviCVNby:nE7oCO3ODy8Awua8fR7U57mmabVc

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\bd48bdfd21ac9b56ba041dde4b0f2db4_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1720

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e7f150b7ad4bbb8f3a6c1f6ddae580c3

    SHA1

    63208b772b08bc15b83c31b906b4ed6ed0064de9

    SHA256

    390c39292f63ab4424d4ade9ef453fd289b82edfab0957ca26acc88f957ea7ca

    SHA512

    70c1d2c20a41400cdf1c2da0ea2bfb5773b5da24783c0a97fad40e395b804fedb14e296108f2a477e86876eeef4b8a823ca0b4e30b29bc6baf95ce6880568c2d

    Download Submit