Overview

overview

3

Static

static

3

c9112cadf4...18.pdf

windows7-x64

1

c9112cadf4...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05-04-2024 03:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c9112cadf48ca82cb812db2243c3afcd_JaffaCakes118.pdf

  • Size

    80KB

  • MD5

    c9112cadf48ca82cb812db2243c3afcd

  • SHA1

    458e2d54c79191480e785f196df3b7d82df3a1a0

  • SHA256

    5f1754dde10b71bf2bf88ce507ca66432ce83e09d4d775bfb04ed5a411865d56

  • SHA512

    cf2dfaa8dbd21e3912319faf1da8e73142fac10476daaca840ac2c21ab46db3e7cc451ed9d9e146d0fd626ce5b791b750ce67776b3c87112145648a69d719ff2

  • SSDEEP

    1536:+Bl5qJlGkB+i2g7Mj9AOh08AtW+4kjaLWOpOwr2EqxMsHanXMH/:WAlGkB+i2aMRTkWowr5q+sH+I

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c9112cadf48ca82cb812db2243c3afcd_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1796

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    bacd5962c2668040cf69e977a4c67dc8

    SHA1

    63b3b388f83fa5052a402c32475c1236b4f22203

    SHA256

    16707a3a5d5fe34f0bd923d0baf3651f91a9b36cd4f031b131aa0edb58642ee9

    SHA512

    f96b679ed8c54d90c461d557e8958d2d90efdcc5f59485357a98c49b9e4e98e8a7196ca55710bc98993973f48ac00dc25ce412efa20173f0ea01a82c387bd137

    Download Submit