Overview

overview

3

Static

static

3

f3cd0f9836...18.pdf

windows7-x64

1

f3cd0f9836...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16-04-2024 15:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f3cd0f9836955c56f9bfe9d4078d5917_JaffaCakes118.pdf

  • Size

    130KB

  • MD5

    f3cd0f9836955c56f9bfe9d4078d5917

  • SHA1

    93ecfc6778d59fbb2dc3557b7cdcf6d58a844799

  • SHA256

    79f43d5afe60bc241d0a465bd292df54604770c1fed0ec2c7700053930174583

  • SHA512

    e8b5253224d551c131437e63f38865eaea92361ac66d47f57c2caaa18759e11f11a222d88d6556cea0001e9c038b4253c4af18d157ad0a1c7f8a662f78678959

  • SSDEEP

    3072:v2DII8j36v4XrjjbGyY19+Yg3bqhOpvun0ACEQk7W:v2do6Qrjj5cbmvumZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f3cd0f9836955c56f9bfe9d4078d5917_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2300

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b69d0f9316468ba531033fddb9617e55

    SHA1

    4302aa1616a18d4894ec7033786f7da8bd277b29

    SHA256

    f4004a8ad6d1db6cb8ca0d13b8688022ed643d7c98712e5860eb59689c098c38

    SHA512

    9db4238f1d2266cb267f61db2b0275c0d1430c787f79459cd5b10bb9a09f08c3e3f9f398fcbdfd2101a6b0a8fd4ddef436546abc8d3b5b619700880b0c489c16

    Download Submit