Overview

overview

3

Static

static

3

f7952690e5...18.pdf

windows7-x64

1

f7952690e5...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18/04/2024, 08:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f7952690e55b2f4efe5b563f7da11cde_JaffaCakes118.pdf

  • Size

    182KB

  • MD5

    f7952690e55b2f4efe5b563f7da11cde

  • SHA1

    95220410a70168afa9326bda15656b3c9920ff9f

  • SHA256

    1e56189d45304dedcb564a6ac6942d2ef9767ca0a08979d87b31d50e4ef61e91

  • SHA512

    1bc20d8dd5b89810436366ecebf50beb131112660ccf08d651897129dfd4989d32af47f2da5314840b38e99bd071eaa21420e82600c9bb974d2d658ff7776c99

  • SSDEEP

    3072:C87Ti+kmNIOX6AFMJ3HkNZY5HvnCzPNC3AKgqbSzgzgE3L2At7UAc5KNiJu2RmRg:p74mGkCJ3kNZKnm4QY3x72AtRc5K+Qng

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f7952690e55b2f4efe5b563f7da11cde_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2700

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    91ad8d69883e1d4002daa245072e41b4

    SHA1

    9d37562775398ee8b81e069344210e94713172ef

    SHA256

    73daffa20c381daf864d3f657c5f3a8933e2ca6ff6c0c12c9d7592b0d44faf24

    SHA512

    cad7431d0e75cdb14caaf1f69aa113a3c773f1ad5e9ce9d47640c6c5c6a18ab8ecf462e4fd7cead2d9f377d4832e8735adf298ff3538153d872b0359c7606c4c

    Download Submit