Overview

overview

3

Static

static

3

f2d58f1ebe...18.pdf

windows7-x64

1

f2d58f1ebe...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16-04-2024 05:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f2d58f1ebe902435abdc015e718bbc7d_JaffaCakes118.pdf

  • Size

    81KB

  • MD5

    f2d58f1ebe902435abdc015e718bbc7d

  • SHA1

    01a4bae080f9c7cf7f3984ccd951f1317435c740

  • SHA256

    40777554465b1c10c27128b4d8d0eaeca213be24e857d588caf2fd58bc01772f

  • SHA512

    c6c79659dba2a350d546fafbf194ebec2fd3700726a68f8a374e5d8f1fd83bff70e0e5f72311fed10054c1eb91d67295911cba3ae7e27179b76fddbfedab7d2e

  • SSDEEP

    1536:61h0r5ByKptm87Uica5a51k/KsWypOlLwJWH6V8oA43kubV:M0dI+tm87Uq5avk/ylLwwAA4Uc

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f2d58f1ebe902435abdc015e718bbc7d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2204

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    36e7355672e2b8499048b95e658c10f0

    SHA1

    d46009c39f764f6f268e7bfac6128bcd5a9b92fc

    SHA256

    d770d4024a016ac32a5e871322b1c103d989ee271f5b24e903f50a43712bf837

    SHA512

    3afe9eebba6126ac404b8f779d37f27e1b43ba2470f7116ce280837d504aac9b154d8ceaf6a4b31c441304bf8f476ebe0b77a2e7d452526dc6d9f1865d669294

    Download Submit