Overview

overview

3

Static

static

3

f62b23f896...18.pdf

windows7-x64

1

f62b23f896...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    17/04/2024, 16:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f62b23f896ea08604c3d2d8f76156a4b_JaffaCakes118.pdf

  • Size

    87KB

  • MD5

    f62b23f896ea08604c3d2d8f76156a4b

  • SHA1

    d08f64cc4b4def98a8eea9fde4ed292044657857

  • SHA256

    1568aebf3c402cca3b800e1743439c5b78be49f4a78380c3a9bcdedb83b86d7d

  • SHA512

    6c821440741e6aaf850e26581fad1bafc492a9480c130a28763fd77b2d3bed197d601d3df81ccfbe1522965eb55920392cb5ff7f00748313337acf41e5b0508b

  • SSDEEP

    1536:gRC2J1UGaKKUQ7IRSccD9z45//B+sWHKCu2oWxApOGrX7IxDB:UCaM8RpSV453B+o2h3GrXUr

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f62b23f896ea08604c3d2d8f76156a4b_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1772

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e23d0d3c874e162e2baf608149498ecf

    SHA1

    4591246be35ac2c6e6b7a8eee2c9747b6bed7c46

    SHA256

    59353c6c06bbc7e03ebd9f0ec85a0420419f7d554e35ed9402b4df48261c00c8

    SHA512

    0d7d2724f819a42abb1e7be6f65932acaed0867c3a61715dd8033664dedcedd9f5377b1d49179768b090ab0e751f9aa191e43dd5554593d7fbed662f8636828d

    Download Submit