Overview

overview

3

Static

static

3

def65c085f...18.pdf

windows7-x64

1

def65c085f...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    06/04/2024, 07:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    def65c085f0f6586da31bcd8c36f3958_JaffaCakes118.pdf

  • Size

    45KB

  • MD5

    def65c085f0f6586da31bcd8c36f3958

  • SHA1

    1ba4008260b6a4a27c7ca36915ecd0cb5d4333a5

  • SHA256

    42599d460d8cb91045a6457376c270a79bfd64acbc4147fb165c86b7c9e15891

  • SHA512

    46d9a94674fa2cd85edfa6f9b096fc4022bb01211c5e2c51cb0b8228b836ba996dfedfe858668e3ebfe284c8b1f37b905c08c4b0560c5a8da834136e6fd838cb

  • SSDEEP

    768:PHvhUI237Oob0ge4v81b+GxM7ORMpz3w/gmi1RjjOEjMz:PPhU77xtv81yGxrRmxmURjiuMz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\def65c085f0f6586da31bcd8c36f3958_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1704

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    81a0799680f1cea562050b50317d9e47

    SHA1

    eef88cde01df67f80b90a03644361139f0c8a65e

    SHA256

    40c1b2599700180ad796c20774190fb99e2b30de07960f2a0758fd3a0f853173

    SHA512

    ba5b1f2fccc5d2dd18d8b604709980997fb1e77c6c13a71be01cd6480a189e70331267faff67909decde6c458eef60889a5e027b9986a784f6bdaca1c623f756

    Download Submit