Overview

overview

3

Static

static

3

d1f346f64e...18.pdf

windows7-x64

1

d1f346f64e...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05-04-2024 11:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d1f346f64ebc1736c3fe8083dbb6ef92_JaffaCakes118.pdf

  • Size

    68KB

  • MD5

    d1f346f64ebc1736c3fe8083dbb6ef92

  • SHA1

    557b28e8e764d5ecacf52969635f5b27ca858b24

  • SHA256

    50d372f96ac3997f2c8eb7ed4c90a842405d9900b67265a691faf23607005f8f

  • SHA512

    b1ec2fd31b5a6440774ac7490ee77d236356f80ede96e5202b688ce41571c3da488f44ecafe52c92b5302499c07f3333461151c82cbe1861970d49e08a8f21a8

  • SSDEEP

    1536:yL+HawsbQTPakIBmXdGcoKtvsMyFq35uAW4QtBrpNOWspO2URO6:RZafBo7tvsdou1tJd2g

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d1f346f64ebc1736c3fe8083dbb6ef92_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2192

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ce08d0c9a608237c264fe1264fcc569d

    SHA1

    76b9bb2c66c846bd9a61006f3ae2c1dd79fa7600

    SHA256

    cda2c75219adafdf8c6d66ed557ab8caa6b6151b0320e3e49a8778bc61f1191e

    SHA512

    6eaa0a74d6afe09e595f5b9b0d54ce43251ffff2eeacf38533064c89d73c7e0a3c6ac41a67c347234523fbc5aa753b5d68a15a0658c580ac1437785df540ce38

    Download Submit