Overview

overview

3

Static

static

3

d8392f20b5...18.pdf

windows7-x64

1

d8392f20b5...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240319-en
  • resource tags

    arch:x64arch:x86image:win7-20240319-enlocale:en-usos:windows7-x64system
  • submitted
    05-04-2024 16:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d8392f20b5eea88d23c0e33bb1c032bf_JaffaCakes118.pdf

  • Size

    81KB

  • MD5

    d8392f20b5eea88d23c0e33bb1c032bf

  • SHA1

    36dee332c655eefc564ba14251630f9819f8dc3f

  • SHA256

    25ea8df4e7f98083f9a0928c4e8ee7947bbae4a91de125576606abff67dfc749

  • SHA512

    437cbf65797f956d7f0a6f239e5f566e2169332f01540444c9832fa8ae79dd7727a8484547098d60dbf3b809a04515237e125312d847a632dbd9ec75e9c498a5

  • SSDEEP

    1536:g2WXhdUKoxbbmclGZhepOQVSHeaDh6sT8Less6W28keJdRWspO2IUR:TohLKHhy4sQV0eaDh6E8PsIpgdA2T

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d8392f20b5eea88d23c0e33bb1c032bf_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1148

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b9857d9dec94369ec98582d022eb0421

    SHA1

    feed816d483c2db51d716e7ef49b9513952b55b6

    SHA256

    01e88dce96ea4c5b4a52823814b3c312f06490021def10254d7301ce87b52f85

    SHA512

    bed320213825c6ba1147ae5ad4852c5f4c962c18ab872944f4dabb513ce4ab0ba802d2f824c4f7db28c6817c912f7ba3e37d3bfc0c61bc651d1f01d5c67df78e

    Download Submit