Overview

overview

3

Static

static

3

d4dc029c62...18.pdf

windows7-x64

1

d4dc029c62...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05-04-2024 13:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d4dc029c62eb7b3206189baa165c1c1c_JaffaCakes118.pdf

  • Size

    72KB

  • MD5

    d4dc029c62eb7b3206189baa165c1c1c

  • SHA1

    833b84b4a7eee2d9d752aae0c04c25ecd8277f39

  • SHA256

    b187d1ec37055b230d70c14fb70874f03a57af04900c17c61c5e4fd57f567c84

  • SHA512

    50fefb8dd1bbb6f4346aa3cb0868661cba9845d4a836e84cb545345766a9a51c1152a89e6493c9e26c2cdd06e0cda0cea09f78c5454d0258ff3ba359e45288c9

  • SSDEEP

    1536:jvdkyP0qoWSnOhFgi+9DKuMoOxOPiIW6pOu26WYgoErlqvxPoZDT2T:r5MqThFgi+9WuOxOPiRu26gojPoZDG

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d4dc029c62eb7b3206189baa165c1c1c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1712

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    721ddd7b5e263d16315c1c335a747fbc

    SHA1

    cceaff0f3c7afc5292fd84b2efd8ea9a0b964e72

    SHA256

    eed655f07974dd28a862e204c8dc4fc8fc182ddf70b220dee70b04044b7f40ca

    SHA512

    424058ae4938448d60843465142c0793eaf89a842d473ce10115cc909e1995e2803c9e9efd88ca2ae1e6204f4ab952b7078d0b49660762355e36f9e01ca62109

    Download Submit