Overview

overview

3

Static

static

3

f42d6215cd...18.pdf

windows7-x64

1

f42d6215cd...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16/04/2024, 19:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f42d6215cdd04ddfbab6258b496d33d4_JaffaCakes118.pdf

  • Size

    81KB

  • MD5

    f42d6215cdd04ddfbab6258b496d33d4

  • SHA1

    280c41f1df6f5e323076352843e3653acd6ff2e3

  • SHA256

    1bb62c2e7d2e1f20aabd91e0d214c37a8ba5db7f0bd6b7b3aac2d989d63f9b1f

  • SHA512

    8b5aee131a4ec0abea431060e6927c8980caf1870c79ee1e07fa4bdb54e91129284db5cf9b285b3802e9de1181ddb73ae56036452491ee56fc2129c26d2a9470

  • SSDEEP

    1536:RsvIJ436+ma+32R4X5TrCcNvmir+ogHiTCmgc/cl6egpTcfUsZ0uWJsqR1:ued+7KnpPiD8wl93fU80DR

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f42d6215cdd04ddfbab6258b496d33d4_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1720

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    37f76f0de248eb0a065a0d196946bf0e

    SHA1

    490552cfd250fb639a1fd818ef268ccb36541064

    SHA256

    8653edbbef98c4727f05080ed60a74a8eb9bbee84e73437ba778fc2ea190fb3f

    SHA512

    d5dff7e1c6b48e60d56ea7fa014e5cf5fd940ed02b73cf1c98d4ad8a92c5c5ea9a202ee78c686261b430f35f69d37b1024e1914fd306d7cd92cc34ae81c6fdbb

    Download Submit