Overview

overview

3

Static

static

3

f11e8a6521...18.pdf

windows7-x64

1

f11e8a6521...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15/04/2024, 13:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f11e8a65212a66c47bc14f3491b4582b_JaffaCakes118.pdf

  • Size

    35KB

  • MD5

    f11e8a65212a66c47bc14f3491b4582b

  • SHA1

    fc49dd04f8d3f957bdca813148824310da9a0256

  • SHA256

    45d871a046a0369bf94c894c0b222d159dd95bb1edd2fe780afdba390572aa54

  • SHA512

    137de34f37dda2946fe91b1ee429b792f0861f04910e640cd2407a2224919223ab4f490c3a3072e7a7080e685b3dac97f4732aaf91d508182388310c33dd2cde

  • SSDEEP

    768:iVVVqal36Jtsta+BN/2QvM9ehwFn6QblJ4vv1ria:mVThXN+QiOwFnnsv1ia

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f11e8a65212a66c47bc14f3491b4582b_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2912

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9831a3816bc377cf51a5cc0060b93bdd

    SHA1

    3de3b8fc53f36f5655f49f5e109330acb83eea44

    SHA256

    bf243f587174e73140b961596171be86b3ebd2edd63a9222cb20cf435e37fb02

    SHA512

    2d4aab991fc5df76f88d066bb35038247bbd520cb8bb8eee3135c6b3aa4b2b580302d905a36ae2f6c617515656d9aec0f1a24430e4740b87198830487388943c

    Download Submit