Overview

overview

3

Static

static

3

f0961dbd3b...18.pdf

windows7-x64

1

f0961dbd3b...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15-04-2024 07:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f0961dbd3bbd784ef9cebce2e5090f41_JaffaCakes118.pdf

  • Size

    76KB

  • MD5

    f0961dbd3bbd784ef9cebce2e5090f41

  • SHA1

    c6bdf8a3803b761f9b0f78f3921a8e6d2cd080ac

  • SHA256

    9b0dd2d03ae0c8062d988458a3fe1720ed519633dd224b5ba703479e8e73acc1

  • SHA512

    f384cddb48d04d8adadabec7a45982e91f855a3b8b50559f12f79a32172baa5f18591ddd04b1e7ddcdae0ee847a4dc6eb1bd5bbd4ac951f6f79d430a8d1456b8

  • SSDEEP

    1536:00+EWgUKgC8fYN5vLYRJ9LM1WWal6j1JtjG9kl066c58UNmWZTKtVaWUpO7z7v:d4DfLviYWal6j1JuixS2gV17H

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f0961dbd3bbd784ef9cebce2e5090f41_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2508

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b3fd122e903d111dbf2b382706be8528

    SHA1

    839d596d953e58c42c5512db3c54698da697bb45

    SHA256

    f9e9f85cde7fbfa1b0c75a4f54f55fbb415fa0d404df59987b8f75f4a9c982af

    SHA512

    5fc84292182ef0de8ea1ee2315312570c54dfc4beb5267cf37d7f45ac59618ed0d766cf342d7a1512fd06397941229c775c4503b61a350995bc4846035c88a86

    Download Submit