Overview

overview

3

Static

static

3

de1454a9ae...18.pdf

windows7-x64

1

de1454a9ae...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    06/04/2024, 06:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    de1454a9ae7ba225ae99c964bfd13893_JaffaCakes118.pdf

  • Size

    76KB

  • MD5

    de1454a9ae7ba225ae99c964bfd13893

  • SHA1

    4ef9fbed225ae7b976560514010f4d0d1101cec3

  • SHA256

    d4d4a05689cd7a4ce06463dcac1ab26a44b184eb45474c90ddd1969aebe9343f

  • SHA512

    4e60537a8ea53ed70528095c2b0e8b34bc558b55d4439075081e43f783d126934e25f2af35dd904f0e4b6ff4e1440ee9dab941029ec6ce2f9e6ae722857c55ca

  • SSDEEP

    1536:QRQ55tH6zBx1aSHUYlGu2BPWSm0J8AFV8KaWypOlWWxyySQzERg4dTG8i:MkH6lHxR2BP+0iIVfrlDEyE64dE

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\de1454a9ae7ba225ae99c964bfd13893_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2316

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c41b4ad5bd245d336f8f85d7e6610e30

    SHA1

    195a91d211a94a6bfdc12a945cabe9f49a1dafc7

    SHA256

    47ab73c4a02fb011028e9ab5c3f5661e32ffb8bb6f165b9613cadebbc557b5f6

    SHA512

    01c076f690b41c430da3f0db80b6a66c7351a9f97b98416051e047799a87e7adb74da79d1bb13489de5649945f7ca2d284d2f709710dc9dcb2f5a87d2af2ba1f

    Download Submit