Overview

overview

3

Static

static

3

f30fc4e8be...18.pdf

windows7-x64

1

f30fc4e8be...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    16-04-2024 08:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f30fc4e8be99164b6d0a6fb9ba37de5d_JaffaCakes118.pdf

  • Size

    83KB

  • MD5

    f30fc4e8be99164b6d0a6fb9ba37de5d

  • SHA1

    be1c42e4de40cb0028fd3697ddd105e91ef52dc3

  • SHA256

    9d78a1c9960aa91b065e2889839adbd5457c716b296f4bdb51f9b565d8f5f80d

  • SHA512

    daab355e53c6aa783733e341ffdcbae9a362aba40de504b7f367a337ca26bbe1ce995fe4a9a408ade5fe8be6bfd2e263de320641c0c8450ca79674ce4a606cbd

  • SSDEEP

    1536:VmppfrdCAVyzNa/Le5v+xpwleKePPy4WBTJKLJWspORTa5Hy+:0jdC2ANkS+xele1ah0LgRG/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f30fc4e8be99164b6d0a6fb9ba37de5d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2228

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9cfda4a90cc63b1853b61afe2b2c71ca

    SHA1

    03b365e3d6a07428541b8e2c40ebd69946fbc58f

    SHA256

    1c411d98e05b6cd9421d9ad9d283dc429281366691d50d8b8ff1864ce3783c30

    SHA512

    22f70a8fb36c20a746e2fa7dc4448c728d282f0733f047f305671c1101520a9735f60058ea3ce69c8a73f192f038f7cb017fed20ded86595efdb70eda3b4fe71

    Download Submit