Overview

overview

3

Static

static

3

bcd8258cab...18.pdf

windows7-x64

1

bcd8258cab...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    04-04-2024 16:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bcd8258cab84939cfe6b7ff036cf28f5_JaffaCakes118.pdf

  • Size

    87KB

  • MD5

    bcd8258cab84939cfe6b7ff036cf28f5

  • SHA1

    9eaf49d40637d913b84c05984c2ef82020a12349

  • SHA256

    5a7f0ef710e9d4a1e6e0464180c7ee05cf28788551bab049001c342a1c258907

  • SHA512

    e86adef212e4d49406f1b1cbfab763ba0b984c8968b4bf92278b705551780a3351148b7ea01e71a802163d2c890805b365e394f053a0f6d4d82f9084e98317cc

  • SSDEEP

    1536:cKTdzqpN/Uq16n/oKjnTNiyvRWWJW6y+TO7g4W8pO+AC/:/8rh69jnRIgOMj+t

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\bcd8258cab84939cfe6b7ff036cf28f5_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2908

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e5366e9ebc5f5c8f7333bf8cc377d25b

    SHA1

    236558a90cc796e47e0b852ba2dbf864132c9481

    SHA256

    a7b6bb50ffa0d6f2f9347b1750246f4cb05aff3b2c3e5ef518e1a24f865e69fc

    SHA512

    dd855ccf40f9e0dca53e95d4dea5f16c3a3bd1dc73aa50b44855120cbee3c275cf1d8363fb829d822a4d046b6da590f39bdefeecb78f5270a762124379a9aef9

    Download Submit