Overview

overview

3

Static

static

3

efef0db223...18.pdf

windows7-x64

1

efef0db223...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240319-en
  • resource tags

    arch:x64arch:x86image:win7-20240319-enlocale:en-usos:windows7-x64system
  • submitted
    15/04/2024, 01:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    efef0db22305b7a254ff9d8c14cd0eff_JaffaCakes118.pdf

  • Size

    82KB

  • MD5

    efef0db22305b7a254ff9d8c14cd0eff

  • SHA1

    c48736ef7cac61d33f4cbac0c016a33c180d6033

  • SHA256

    9e6b513808133b85c40be043ca80521f33a4cb313c1c226159f6f120e4f58c1e

  • SHA512

    08514215db3ff569d3fdc3ca189e03ba8d9c65206f8eac4101b51e3c220bc78979e639a9b8729d8e3468073f61669bb3b580214e67019cb268ab7ab017bb5e1d

  • SSDEEP

    1536:Gfq8WSzUt7iF8tByT1BTZUrD77ftJMFyr4drRE+S1WXG8M0p/n2fjWGpOGmz3:LSwZ42wHTZeD77ftGjdSDUGA/A4Gq

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\efef0db22305b7a254ff9d8c14cd0eff_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2188

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1395256563faf48257fd1c9c19875d77

    SHA1

    f992d9e744773bf688ad3071a7bb0bf39f13ea64

    SHA256

    def231fbaa69687588a58c1cff49d0cf7f54fee99b2e60ca699b661d62d02d56

    SHA512

    6341d63e6997daca21eb2aa18a8ab6b68a9c99efd335fbd5ccbface2ef3d6a81d4925843bd462d316bf01c1c5411436d2ee3ae098259d472c47d4eef52cc44be

    Download Submit