Overview

overview

3

Static

static

3

ed272f88a2...18.pdf

windows7-x64

1

ed272f88a2...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11/04/2024, 09:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ed272f88a2f43304aba124aaad30a470_JaffaCakes118.pdf

  • Size

    38KB

  • MD5

    ed272f88a2f43304aba124aaad30a470

  • SHA1

    aaa649db3ad7de04465d937976d013c0624b8603

  • SHA256

    710e46a937d10d13ee0078fa72863c4184eb0e05b9d2b441e1eff0952e9b9ac9

  • SHA512

    031ca4978f60e73931d1450e28536c8ffe02b3c660e35325c3c64a6a782beedf1aa1525009f12fe51f2cc8427819cd5c51f258d35791703d34a0088677f5b995

  • SSDEEP

    768:7ighKeebAYS74/6Bbzd4ol2fd4lcdtKzEmfwfh15ogvoKPpCPl:7RILIU/6ZzzTuSEc+hbBp+l

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ed272f88a2f43304aba124aaad30a470_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1712

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    14656b137c21407b50f1c7a4f3144071

    SHA1

    d82de958daf06f7a726a055904bef94d1fded612

    SHA256

    75a34a6eed10a5ac740599201db8053658a615429db64f249b24efe72a3ae9fc

    SHA512

    7e0217b779cc9d899fdf16f0b1a3914c9e1cc21f32b44a144773da6c5c4c4bc52b864aa75adc0bfd029e046c6c7d74269f92758f8696c99918ff4ac4dfd1780d

    Download Submit