Overview

overview

3

Static

static

3

f23d0e2038...18.pdf

windows7-x64

1

f23d0e2038...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16/04/2024, 00:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f23d0e20389f55f2829308b43d28b6dd_JaffaCakes118.pdf

  • Size

    74KB

  • MD5

    f23d0e20389f55f2829308b43d28b6dd

  • SHA1

    9b6abe61df39f873c4a5be3ce0ea4710f4ea42f7

  • SHA256

    f2afe823abe7d59f79bd495660304a639382f65c8b1e8065daeaaa487a36a99b

  • SHA512

    48068d9fff8def6d0896d2a2451a2e29329d848071aaac721e7aa9dce4d5d4c9d52bdfca28011c2f7ccca9f275350d314609da5f7d0d9bfa0269e46a429cfd73

  • SSDEEP

    1536:YDpVLBEkRn4m7rQ1c7BxSJLmRsCWspO+7GxNDWFQ7GWzsY54:AXLekRnXrQIHmmRE+mN1Fzm

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f23d0e20389f55f2829308b43d28b6dd_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2332

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6904f5c73c1220d29d3e317845458e5a

    SHA1

    890c1131791b5a5e6889f07f05a59de34204d7aa

    SHA256

    cffd2b7ee8b573d10594f35829aa27a4145d4049ac29b4e3b13ba403cbb2c661

    SHA512

    cb43ac929512a966b4be89ec5c35a817dfe088ce5623d5d5d92a54800216abe1f05d02b22404102cf04cde4600f7b0789396aff4015d9de7a27416da223ed125

    Download Submit