Overview

overview

3

Static

static

3

f6f32e4af3...18.pdf

windows7-x64

1

f6f32e4af3...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18/04/2024, 00:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f6f32e4af35e5dcaaa09dc48204854a0_JaffaCakes118.pdf

  • Size

    215KB

  • MD5

    f6f32e4af35e5dcaaa09dc48204854a0

  • SHA1

    ff49c40925a0cde5989703c59776e412a81a3ede

  • SHA256

    aa8d75510ac712090e40fbc947978273dc2fb88b559e06a53eedd031a208165d

  • SHA512

    ae097ab1e576b247c104e1c15cbe07c695b7973cea377a3de682bfe06882ac42f5edb666f707877ff8e680a238ed3070b20ee3bef4e53951e40cd2a2c6f5fa7f

  • SSDEEP

    6144:i3EE5j355klItL5RQ1ImG51jtf7cYq/PW2ti4qQt:i3LZ355ce0eptwYq/+ei4p

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f6f32e4af35e5dcaaa09dc48204854a0_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1980

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9cb8dce1d982eb9982efd6ccbcf53efc

    SHA1

    5799ce8d662d5291ccf529f9bdff71b40b41dcb1

    SHA256

    ac9b4f36349ba64722f303cd7e0675a759429e5f1ba12c3e32c3d51648060a70

    SHA512

    f35318d8cc83e1fb18e46ba0cac2cb002dc3269f6a8d9e9c5111028ec6435734ff9dbdcf6b3ae9ed57914295b760826f40f776b80b86543f30dd670432703794

    Download Submit