Overview

overview

3

Static

static

3

df8109d8be...18.pdf

windows7-x64

1

df8109d8be...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    06-04-2024 08:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    df8109d8bef2853418fda0fde24fcafb_JaffaCakes118.pdf

  • Size

    93KB

  • MD5

    df8109d8bef2853418fda0fde24fcafb

  • SHA1

    a0a1437b255204f6f71ff040ca8fab2865d2b051

  • SHA256

    0972c9a541692a41a225ed11e75c701ccbfa17c5151acead086f0c8f406e0715

  • SHA512

    b293a69e16ff6570180bc030067def4538e55d2310e7676f91d4a9fec324395da25639d3793bd601b448a875ae1df5f31629dc6ba1005b621f5070f7192a5e88

  • SSDEEP

    1536:/ueNYsDDjpfJY3yJZ9nHHHX9H31wkIcRM69mQE+oNpMSUSzY1dqz1UWY80F7RMQz:t/TrYiJnnn3R31wkIcRM6sPRpcKz1uDJ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\df8109d8bef2853418fda0fde24fcafb_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1540

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3d3fb5fd57a7961f069570ddc76c5f28

    SHA1

    6b8550eeda382e851fffd3b39eefadf8a386728d

    SHA256

    b7a68ccd7641fda17b6f7be310a1275a983c14692b6332cdc7704080649677d2

    SHA512

    cfdefdf46def73843d9c94941e3664dd6dd8140e0f72640832b27d4749b2aa0498151df15f2968945877b222fd8085109e1befd5288ca9bde8e8a3b57c2a3b1b

    Download Submit