Overview

overview

3

Static

static

3

f8ea1adbc8...18.pdf

windows7-x64

1

f8ea1adbc8...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    18-04-2024 22:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f8ea1adbc84ee27fc352c1ed117e01a4_JaffaCakes118.pdf

  • Size

    107KB

  • MD5

    f8ea1adbc84ee27fc352c1ed117e01a4

  • SHA1

    7ea97f04a021f9f41381eacd03ce7934a8483173

  • SHA256

    8d39e77f09b519217f85fd966e4e5578e2506b09de386e85396ed98e479271b8

  • SHA512

    200d2b2c61cf341b4ba235628091680b72462e67bc0316c09dc4cc9f25f7b3fbfe0617e72ea73c20a1d70115624620b16ed94ee3a2b073cfc69f25ab90d3ce39

  • SSDEEP

    3072:0VlVKz7MNPK3VYmhvKL/1jdKgzMl3VOgS0:0cXMlKlHtKRj/kZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f8ea1adbc84ee27fc352c1ed117e01a4_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3064

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a55e766a33fed866d57015db52cacf41

    SHA1

    cda0dcc761e950b44926f98055acb650878d828a

    SHA256

    bb082a21b679e2de71caab730e1a9f9c10361c395b1b308668f59a176cd33f06

    SHA512

    e26dfa161997cdbf451583afa56bc7b1929b882243ff0399e1cf1489a7cf37350fc4525c3dd0bf770279385ebe7eabeb8354bc97ce1669f7a604d3e383af6ac9

    Download Submit