Overview

overview

3

Static

static

3

deb972754a...18.pdf

windows7-x64

1

deb972754a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    06-04-2024 07:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    deb972754afa2f2050a2c7d32117b4b1_JaffaCakes118.pdf

  • Size

    84KB

  • MD5

    deb972754afa2f2050a2c7d32117b4b1

  • SHA1

    1aa795c6099d75d77b6ad497b408e58df31d7bb6

  • SHA256

    4fcfead7193f94ff70c1334703b48d20935d3229757cb6ad6acdc87d7524dce5

  • SHA512

    1be73cc05399bc94341884456be0a0ebb9045c85bfd3a6e25b2eb9e2701fb665b075b1214db7598e6f8d72d507936e51276cf689fcea5093aa3e280c2ede76ac

  • SSDEEP

    1536:20MeGyLuXAgEIynl7kSID8bLPS7QzTA0jU9WDEqKKZI5W77Fv6EIWp9wHsUSMbPp:ZMeGyLuXAgwFID8nH3A08WDHKKQW1CEu

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\deb972754afa2f2050a2c7d32117b4b1_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2460

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    36657501f3cad58dd21ba43571dbd1ce

    SHA1

    8dc59f6884911742c5e44d8c68fb3dc3a464a605

    SHA256

    6d4746108ac7e11a905f807e2641500186f262222b6e5d24e372f39431316f04

    SHA512

    47912b1fede1323ec21074fe936de16da16ae0ee00b02e3b6b9372a8de33b3cfe0948200fc1e95d47e571b149e7c4199c3b94bd4fd8d91317f813cd056736a1b

    Download Submit