Overview

overview

3

Static

static

3

f78dba1a53...18.pdf

windows7-x64

1

f78dba1a53...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18-04-2024 07:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f78dba1a535d94475b86d09fa8b4eeac_JaffaCakes118.pdf

  • Size

    86KB

  • MD5

    f78dba1a535d94475b86d09fa8b4eeac

  • SHA1

    8b7965b175bb55b1dfadd0c521f9fd92bc32d9f9

  • SHA256

    52d0eda61f55d527d07db66e7252026e06d30a49b5ba94f6890ea9eae71a5880

  • SHA512

    dbcfbe6f130ba8943ec1d4a834e1db9b8a3bf221f90498fbe8ad14c50a26aed83c1f368ba9ba67870f4c5eea6fa6610d56e3b7d0c2d4e0bae13643c79f473b34

  • SSDEEP

    1536:aQvFLEtLs4ROy7l2wcfn7L43r9OV0va+OKzSsKL16yWKWypOlWWxDnKP2kI8NhGG:/vFLWs4p7YwCLGMmvFusKL12lDDnh8Nj

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f78dba1a535d94475b86d09fa8b4eeac_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2060

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a373d9ec244cab71be3aca03f79296da

    SHA1

    5bc24bfa3a44c2e5a6c549cd17515367603f3fe0

    SHA256

    b7a621d087ec4c625eb64d2efa2be1048fe1dc150275eb2e0d3e1b653a41257b

    SHA512

    54c934832f549ff3064e520ef6e2db4d29a2efecf958a5bfad7d23a2128de7ecad306361b3be198a564e2fe9900fdd28e37cff99ad96e22a001cf68f45b2e1d4

    Download Submit