Overview

overview

3

Static

static

3

f1399794e5...18.pdf

windows7-x64

1

f1399794e5...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15/04/2024, 13:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f1399794e5f97724cd89f9f6a06be40f_JaffaCakes118.pdf

  • Size

    92KB

  • MD5

    f1399794e5f97724cd89f9f6a06be40f

  • SHA1

    750a8d7dbb2ed98b97ca70fef5a4a89d1c0f45b2

  • SHA256

    efb501de8ea3ac18735c5a1414c1e0eca7f22e84dd8c7300c6f0cbaf9cb7e92d

  • SHA512

    d552c193b5a8d9d619dc634d83218563e64028d47f5ca4fcf7083191b4b35944a3b97f460c27a2f73aedd8f569befec7ad7355455fb563af351c073d5e517a56

  • SSDEEP

    1536:F1HYn/ppY9T6WSQqInmzcfmxX6I1YYSWoSSFeO2WU9r8ltHilHWUpO7zdeCKer:vHMWuOuAf4KIG9Wod369r8ltHil67JeG

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f1399794e5f97724cd89f9f6a06be40f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2952

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    dfecba95d7de2b756687f6b9741e91c7

    SHA1

    ccac50a3f74c69a202dad35d8b9608f6de7c58f1

    SHA256

    37a4adc21a6623c2f5ab804b43b0961ef0e3e5989b3ca9db49ec13c397acfa05

    SHA512

    8fd5cfbdf10d40fe10b7bd5cf0bdfb4d6ceed893b442be06380eb4f3d94ecfaa099a1b16ddc39dde0edaad4683997a1051821a2e392cf822483382a9d74eaa8d

    Download Submit