Overview

overview

3

Static

static

3

f3465edaca...18.pdf

windows7-x64

1

f3465edaca...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16-04-2024 10:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f3465edaca2a05b6a5451fb688db59b5_JaffaCakes118.pdf

  • Size

    89KB

  • MD5

    f3465edaca2a05b6a5451fb688db59b5

  • SHA1

    8269cb0b20696c9c74d7db9817a781270feddd6d

  • SHA256

    0ded614961fe474830caa41c74588be64d71359c7ea555702a52fa2ba53b39fc

  • SHA512

    0e8bcd406ac343783272af40378ac841773c25aba438f2ae52ac2f4328818392d5f11e02df8958b688f0bd957aaebf5e9acc5c27e9c7fe68ae92eb0c353ea2d7

  • SSDEEP

    1536:oFmRqHhri6T8P19q4+WYC3fJ21o+xxAvjZzPiPcTrCr1aMtKelWapOtQHWSUrVfs:sYKAnPiwYUJopxiv1zPQ+G0YKeatQvU6

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f3465edaca2a05b6a5451fb688db59b5_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2948

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7c4d2dc0921772ca82a0d99c84b46067

    SHA1

    135f3d4b48a13824c0033b8e39a931e7d3a3a1b1

    SHA256

    16943f342c097a66abc81e936e0b2cf141cd90e93b7b305c0822ad4b19a481e5

    SHA512

    7e5a9cd0a240d7a2553f39a21d3538832de01144bec4e047595298a4dc584021887156cafd89bd2c31c6540f31099b1eb85e7f14fe928a590c16b17b5d0e2e85

    Download Submit