Overview

overview

3

Static

static

3

f633ba45db...18.pdf

windows7-x64

1

f633ba45db...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    17-04-2024 16:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f633ba45db75473d93794a535b1c3ba9_JaffaCakes118.pdf

  • Size

    99KB

  • MD5

    f633ba45db75473d93794a535b1c3ba9

  • SHA1

    f16d40c4916490a26e22a697f5eecf5c2c488d89

  • SHA256

    36e6502d336d4dcafe709febd6b65545f53672c7ee3a28f038b01db7a7c63a9a

  • SHA512

    802fed71dd088e725c23b1778cf163841304baa9c4d0bf051d790995359bd28fdd5e65fd7d370804bfa48805db4b1d7498f7944d2c5dddce4827213e7a72e4fa

  • SSDEEP

    3072:33A2s+CPdVr5xLgdIPTJmF5aX6ZxViAN9O/B:33kdLBbTgTDD4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f633ba45db75473d93794a535b1c3ba9_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1176

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d834d593f0ad928f247f5a5751f83788

    SHA1

    15036820fab306d96074d1e800f1d63a795e939c

    SHA256

    efadcc37f76ecab13a1c3e467b7dd253a97afc6a0ef5a25e8c786ddd873ab823

    SHA512

    afd742a975770c431ca4a78135efbb0dec234c8116ff64aaaa48580da7883244b1b17765bea61f1753d097e6239538eaedd2e7b693e163e97a740406b96740ef

    Download Submit