Overview

overview

6

Static

static

6

f1dd5c4dbb...18.pdf

windows7-x64

1

f1dd5c4dbb...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    15/04/2024, 20:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f1dd5c4dbb570d2a370b4a627d16ff39_JaffaCakes118.pdf

  • Size

    34KB

  • MD5

    f1dd5c4dbb570d2a370b4a627d16ff39

  • SHA1

    2085ee2e4fee259b7e116e0dfa9020f0185f3766

  • SHA256

    5ca30df2025cce7a8837f1008413d2b9117fc883dc5d71294914654a033405dd

  • SHA512

    a5eadf1e44a23cc8135e5530df9a0e7b17cf00f3c5339ab23177c846ec81024745126e3c0f610419a25eb9069e3b3d3b242de49116061de61f0a0669c657931b

  • SSDEEP

    768:FBgGzpDipp9BV2YTq8NPQbZJEIYtKsIZKUQBTqj9aEvY75V7iimmNlP:FyGFGpLbBGdvYFVBmmNB

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f1dd5c4dbb570d2a370b4a627d16ff39_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2292

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3834280f0c64fefebc87f2ebcc6a20ae

    SHA1

    b2ab302306acbd8115e27e61ad43492da9132b38

    SHA256

    19976805bda36fa96cf3a8758816fa29b21fca65330cf6d1cd2d89c4d1a4c835

    SHA512

    0b669f1290d6b9c14da6f92b6950a767e53410828da55e48c1c9d248f787bb24950c19f8a04e61a47e4078a884ef251ad603dd1e81fd731477fcc5fec458fdb2

    Download Submit