Overview

overview

3

Static

static

3

f18515d949...18.pdf

windows7-x64

1

f18515d949...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    15/04/2024, 16:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f18515d949e4049747326283dddc3c95_JaffaCakes118.pdf

  • Size

    82KB

  • MD5

    f18515d949e4049747326283dddc3c95

  • SHA1

    06e2f589ccc16b6f4f56ab2218ec099fee17c315

  • SHA256

    fe5b955f99bcc1709e3a6504c88270dfaf68313b4e069bd25870dcbe5e51b628

  • SHA512

    9ca55c1974f92c18d40e92600a1c26c0be90ba2404f403053db0121e7e1d18507f5597d68016076ae54198456073d4f8f2c60580316d269a3914ca69b1937e21

  • SSDEEP

    1536:OqJZ6nESkwRKL+ezhsynWzuv6ilacWpqda+P0WOpOaZIGsfj:xJZ6EicLTzhsyYOx4UNRaZIX

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f18515d949e4049747326283dddc3c95_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2184

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    de2d7a0808412ef42cde3d59f799f228

    SHA1

    393a0af4289e7641ada356f7cd5354435645e057

    SHA256

    6bebc445e48317feb82eaee3386f856d7a29e22d6847359e448026820cf39510

    SHA512

    dc0f042d531e41269a1406ab033060a5aed5fbb1138fd5ba45ba4506401733e31f635e919f23d783123bfc53972625243b05097351ddd33cc963b7ae21089cab

    Download Submit