Overview

overview

3

Static

static

3

f20afa334f...18.pdf

windows7-x64

1

f20afa334f...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240319-en
  • resource tags

    arch:x64arch:x86image:win7-20240319-enlocale:en-usos:windows7-x64system
  • submitted
    15-04-2024 22:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f20afa334f785cd33bc39671dc8f8804_JaffaCakes118.pdf

  • Size

    147KB

  • MD5

    f20afa334f785cd33bc39671dc8f8804

  • SHA1

    3c1d989744596347e643996065a5fe779b43db1e

  • SHA256

    a021f8d9a8c3bf27411d1963cc99cd4929bf353e5f202ad218f8da262d9eb560

  • SHA512

    a6df9bf5f4fed4ad0e262c538f7505d106af8922494221965b5741f2ba5171ada9bf3faffee865fde72fe8c223d70cb8424cf41fc9ebcc281e33d7682dbb3825

  • SSDEEP

    3072:AGKulQvbunjdpKMAgdI+li17sf7RpR2Oi6OhgdUoxE0lquOhwRAC2gD:PKonj72gdIWDPRJdZxEgUC2e

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f20afa334f785cd33bc39671dc8f8804_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2276

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9591d0c8b614eceb28a46c0c6724dcbc

    SHA1

    891a6b97cefdf972b8754c20bd898bd0527a6c08

    SHA256

    2a64898cf96b7ae8d31e9f172103ef44779700d68acf706d1563d2d6c49364e2

    SHA512

    9fe0b94c4880b37c76dfcf0ed6e70973163f0aaed7e26b9ba1af9032a834c56ca598bca7589fc99b93fe7893439cecf2625eca082b82c500a22500b9c384000f

    Download Submit