Overview

overview

3

Static

static

3

f5b5dcf9a0...18.pdf

windows7-x64

1

f5b5dcf9a0...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    17-04-2024 11:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f5b5dcf9a005020ea07839b2d0245120_JaffaCakes118.pdf

  • Size

    75KB

  • MD5

    f5b5dcf9a005020ea07839b2d0245120

  • SHA1

    9a451807ccba195d62d83e2cd7a038acc6ae5aa7

  • SHA256

    8f319607954610ea4c6ccb9445b52878ab5f671239938eb448f337d02fb4ec76

  • SHA512

    b8ac48b6482eaba709ddb7b9a098e501f26aa11cb4b3888e7e164dc12e948a3b414028bf70bbd7106dbed113b2d3c99c6842828422b1142aa0b3fab6e2bd753d

  • SSDEEP

    1536:FUNlPZTGv9KqPb9MdbY/jhu6xl77Y9SRV2lWgupmeWApO6tN8:aNFK9K8Mdb81n7M9o2X7l6E

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f5b5dcf9a005020ea07839b2d0245120_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2360

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c3b5c681ea41412a57d4504dbe8258e0

    SHA1

    4865fe687f17440ebfd42356d4a42aa53ff0f267

    SHA256

    09962daed4cc2fe9cb73c74157db8e3fdd654118cc7089ebc0a3a1e43cffa747

    SHA512

    78ea72c5f6d2f14dcd4a363f4da1020bed11ca65c28a070ae4c8a8649da75a8e0bd820a43b220f0ecae9567cc427cb809c626c48df02af1509677eb7e00e41f6

    Download Submit