Overview

overview

3

Static

static

3

ed65d3dd22...18.pdf

windows7-x64

1

ed65d3dd22...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240319-en
  • resource tags

    arch:x64arch:x86image:win7-20240319-enlocale:en-usos:windows7-x64system
  • submitted
    11/04/2024, 12:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ed65d3dd2250355a265de59822d644a0_JaffaCakes118.pdf

  • Size

    111KB

  • MD5

    ed65d3dd2250355a265de59822d644a0

  • SHA1

    04801b5b016866c78dc9aafab9525d295cbe56c7

  • SHA256

    5f927257edcc3800e67409e390c588e3217526568d36379765874cdf0abb5b30

  • SHA512

    d060107cf9b1d80dca1662e2c0426540b2176d41d9e0eb8273a01dfb79e54cdc83cfa3f578c961e5c1034c93a0a698832ca17a80baddbe1af5f5838d30682f57

  • SSDEEP

    3072:N98vzVCdHHnO18gClSr0ryR+mPoq6nkCdU:DsBC1OiIR+76

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ed65d3dd2250355a265de59822d644a0_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2888

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f41540a3d3fe21b6acbf86344ec4cf95

    SHA1

    425606e823fe3e7c1d48269e14436ff66d327db4

    SHA256

    084820e4aac68288e2a985fb520dbdd1bfa45352de8692a34ebd8c3ef18ea6e4

    SHA512

    99bcaf15384295d04173252bdfae43686737d3b35034c4f04523b95d2296000fd4bb5fe813d5bb401295703413ef3dcb82b97716d2fe16b6e0a637bc34e20fe8

    Download Submit