Overview

overview

3

Static

static

3

c975a23fa9...18.pdf

windows7-x64

1

c975a23fa9...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05/04/2024, 03:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c975a23fa94b2636e45e9412368c553d_JaffaCakes118.pdf

  • Size

    84KB

  • MD5

    c975a23fa94b2636e45e9412368c553d

  • SHA1

    2886c10151f1557414d0742b675ac1f18617c630

  • SHA256

    e0ef05a236d57dfea368ede13336d520330915a192a83ff38e1c4327a719e953

  • SHA512

    267495baeb4edea03b820e63f7527d5de5f08f07515fd00c7f0849a08a50b29f0cd94d730fe37c265e309e52e6f31429e53823684a94475604b11a2a9fde2212

  • SSDEEP

    1536:ot0WDMg8SRI/Eg8G6JEr6nIa/aEML5oW2rnWOpOaZy4wbsNW3sC7DeTx+87qS4fc:OLz8OI/X8G62r6I09ML5o74aZpOsPeeD

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c975a23fa94b2636e45e9412368c553d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2528

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4d0eabe469ca8c026ae3d25916880e3e

    SHA1

    de69ac2c14f6df44b5ece76690c856e068152ab3

    SHA256

    e3110590831cc36b37d2156f92c9f73bbcb0180dd028b6e09e729955b599db43

    SHA512

    ae6589618daa8481c3b1afda7c7b752c60be8c6ddc4eaffeb80f4bd4fd618bf98aabb1a6f390d2811cb74ad45723d53988b9bca56f05f52588f443ab8258969c

    Download Submit