Overview

overview

3

Static

static

3

db1bc28740...18.pdf

windows7-x64

1

db1bc28740...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05/04/2024, 18:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    db1bc28740cd57459dd7509b63ff3ea7_JaffaCakes118.pdf

  • Size

    78KB

  • MD5

    db1bc28740cd57459dd7509b63ff3ea7

  • SHA1

    37c8ed4f959afaf4a91e8828ba081db907647e0f

  • SHA256

    454bd57c30faf0ee60397b84dc5e2bd18c907e65bbe03032473d4c91f47a50b7

  • SHA512

    0d809e4bb5e7454775ef05c38c305a868c94882d4b7404601d60c39f5fa90c257c40564ec91bce91d96c536894d41912d22e0db9654d68e069a613dcdcdd3940

  • SSDEEP

    1536:9J+4MnJwXH5V2PiVcnh8dk71tec3rRqSdCWVkO4W0k83ltwWQpOCYlX:DXOJwX4/adkJ0cN/drkOjyltfCq

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\db1bc28740cd57459dd7509b63ff3ea7_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2216

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f34bf336caa1637b4a5b8aee5d1a6317

    SHA1

    ee15802fc9137ed4af35ed2515606637e8fe8e85

    SHA256

    6ba44574c061a54e47772547cf628ae2d2c66ce6b31e4c750f26a894434a39c2

    SHA512

    41fbf69880502d3f4ded695922966d31342cd22f74dbb6d9b1a14d9a383668b3f34b8fa57343cfcb63820610ff27b74f3884897084bd54115b9e1e91c0eefd2d

    Download Submit