Overview

overview

3

Static

static

3

f3125b9c72...18.pdf

windows7-x64

1

f3125b9c72...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16/04/2024, 08:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f3125b9c720478dbfb30394e615955ba_JaffaCakes118.pdf

  • Size

    72KB

  • MD5

    f3125b9c720478dbfb30394e615955ba

  • SHA1

    097ad1c64f9b8b92021336b0d7f3f63a4091a2c0

  • SHA256

    8b01e52b315d8f0973631e7d1cfe2f73cdfc03813c411440b03a2c4b2997d301

  • SHA512

    b307275abb9786380b802f09ce22c098a61ce23761691a6be5b5a0db27c0b585cac3ec31d0c6acf2db868027b56aeba20628601184e70c02d6752f81f98eaf61

  • SSDEEP

    1536:iepwugsXKCpJLQZLffDPpREk6FYbNMhYWm2kFczrwbdLeRi7fcoW8pO7F02:xpwugsLpdQ1HDAkDNMh3Q0oTcT7D

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f3125b9c720478dbfb30394e615955ba_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1760

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e941fa9e8862b8eafd4c9f0e2137baa2

    SHA1

    2b839a2930edfd381c0ed390a6b1849a2ba81ed3

    SHA256

    f362ddab8e50a48a73ff9397692c6067d84ccabf0316490d475f8dbeeff06203

    SHA512

    13926f63758649176dd814eab391ea5ef07083033411cc667d1acac340c304ba80829e78ae5f8422da6f61d2acd4130f099f1c3c97bbed5270ed70091274e096

    Download Submit