Overview

overview

3

Static

static

3

f21f949da6...18.pdf

windows7-x64

1

f21f949da6...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    15-04-2024 23:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f21f949da6b807816a3e9bbd21f4696c_JaffaCakes118.pdf

  • Size

    68KB

  • MD5

    f21f949da6b807816a3e9bbd21f4696c

  • SHA1

    45ba8c9b2e3abf192fa74821806e5b42dd5c23e4

  • SHA256

    1f89f4484e30030d32903d958eff0c0d35229892e31ac6ee5f547b584b6b8cae

  • SHA512

    8200fc294b07e2422ec215181e38e5757bf097fa1d56be2eb00068d520442322668031130ec726414c7db99438c3b73c3982b9a9950bda0466e1b1ec42c50bd9

  • SSDEEP

    1536:an8q7RSkrwAE9yHrX0FpBS6elCBPLqn5+SjVG0p:wBy9OrXafx+/jDp

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f21f949da6b807816a3e9bbd21f4696c_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1392

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a48d7f24c03f798173704fd5c0523237

    SHA1

    96b01e097f400671d9dfd7a628541d80b0fe83a9

    SHA256

    589e28d8431a68fafd03004fc35db0af76036e09653409c65b94330d962a048a

    SHA512

    5c3c9889140203a156970d534b43b5b1d76aee1cc596ecb7b74a9358bd33b7787812ee1e8f8fa4fcfe24382e6af0d62b4f14ff5e4828f84d0ec972f9cdb0738d

    Download Submit