Overview

overview

3

Static

static

3

f1c2d73717...18.pdf

windows7-x64

1

f1c2d73717...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    15/04/2024, 19:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f1c2d737173a958a105e40ffa4a094a2_JaffaCakes118.pdf

  • Size

    120KB

  • MD5

    f1c2d737173a958a105e40ffa4a094a2

  • SHA1

    068dd43383b771699f410dbb72067795627d207d

  • SHA256

    19067fff37b8788ab4351009ca2a263d6a570eb66378c1b6110b8239c4089914

  • SHA512

    d43ed17e35858351e654024510a24aef4c771303569002e520e06eb6f4733e36d64347be1d3b22a951ca5b09e7d3c15b1e90df0f434e2e10682d129e1a4c7414

  • SSDEEP

    3072:OrRi6Y6Q5fMqHYfJWStecoe8w3Dgs+4PBnx0r0ooK7k27:2G6Q5fMJ1tecT8we4Uo4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f1c2d737173a958a105e40ffa4a094a2_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2804

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0d21afece3bc3a360c3d87e358cc4570

    SHA1

    a80b5fb70d4c86d644091f18c45635c633fe5b77

    SHA256

    ace0bfc099ef1f7ced105a88735c2e68d570d4736f36ba855d72d27c1822735e

    SHA512

    6b1cc72b44aac61960e85bc3439be4d7f79858adee8e63544c534188938a54156c4658a233b84e0e83b68ff5c8d5c7fbba5a2c3abe307538a43465c031cb869e

    Download Submit