Overview

overview

3

Static

static

3

f760f0e0dd...18.pdf

windows7-x64

1

f760f0e0dd...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    18-04-2024 05:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f760f0e0ddee9c5768615d8d46937ef5_JaffaCakes118.pdf

  • Size

    84KB

  • MD5

    f760f0e0ddee9c5768615d8d46937ef5

  • SHA1

    1e842f07b17b30527e9476deeddb3bdf9a7985ae

  • SHA256

    780e8d92e2f9ea15e8539bfe24feece95a39fca6f9b0870e9aa35061b640b5bb

  • SHA512

    0602f3e5d712156f1c66f7ddc0711f55a57e74fa6de1d54cbc562c8f8df8f925ca34d611840e6c3384951894035c1812f19c3c687e0520533c16f3301ddf51bd

  • SSDEEP

    1536:XnccPgnrfGn2j+03AnztwQPZzuzvccW/KJztzUQhWYCEserOBebgHyhWwpOS24j:MWneR38GQPpGvccYKPM19BebgHy4S1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f760f0e0ddee9c5768615d8d46937ef5_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2180

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    156ec23a6673354880ca706d80de5ebb

    SHA1

    739d2ab06abcafa960659ba6dc3afd4e59d5ff38

    SHA256

    96d188f3667bbc4ba70108f5beddfc245257a74a788c405f000c05ee7bc858ae

    SHA512

    9d895fb34959a6762593d196180f21e5631e1d3cd957e736fc8814652a8cc48bcf6784633b0a3cf2a25b3769a9ae29dff4412d68d6496de9e33f491d9acbb9f3

    Download Submit