Overview

overview

3

Static

static

3

f3bb575db1...18.pdf

windows7-x64

1

f3bb575db1...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    16/04/2024, 15:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f3bb575db118c0b9ed6a271033f29a05_JaffaCakes118.pdf

  • Size

    90KB

  • MD5

    f3bb575db118c0b9ed6a271033f29a05

  • SHA1

    1b303cce2e07b2a1ddce28228427101bfcba0376

  • SHA256

    7ba79b2d1524f01defaa4c301a5d4b2da740ea68990bfe98383993eaf8e192d9

  • SHA512

    167102648616ca9369f544c3f417e58f2cb35ac90ae366bdf17596e6d06999e098cf41a67d58af0ab8483215d9449855089e37796491c4f0a4c5a1005a131de8

  • SSDEEP

    1536:Y0ZLfJjKq7DuxwNhb0LpXpjbhGTnax9qKRQlqWRBG1rRz/0m3qOa2UoBKnY2nWQI:jZExwNVw5VbhG0RQlLwlRlFYHnY2SCK

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f3bb575db118c0b9ed6a271033f29a05_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2868

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9e82a4e9b1b61566edb180349a1ead43

    SHA1

    932f140842c53ad240361ad979f0a998205e03b1

    SHA256

    8254aea8ddd15fb7e3b464ff1d09dad0df80511b919506faddd79ce3f7629eac

    SHA512

    3db07370c6fbb5b4d7615ef493ec6564e69e98d2f6dc471bd7ef3175c44464568e3104ed8451a6ad38c6939940bebadc708502653e25277c4ef441f631e74cb8

    Download Submit