Overview

overview

3

Static

static

3

f8147d1dc4...18.pdf

windows7-x64

1

f8147d1dc4...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18-04-2024 13:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f8147d1dc455398049229c059c593014_JaffaCakes118.pdf

  • Size

    79KB

  • MD5

    f8147d1dc455398049229c059c593014

  • SHA1

    5c5fd9118d45c1e4fcc726e309dd1ed44c87a0fc

  • SHA256

    2c1f07a16e028dbfe155257a51d9a39c7c39115477b24af0b1835f865e29e2de

  • SHA512

    339570aa428c289f9d4da1ce81e8434ac9c417dcb8386db6c92286ad76fb572f6099cb12854d94c28002a22c86e9ccdc79ae77f8228fbea3cc516ce4c0427bb8

  • SSDEEP

    1536:wJb6I0mwAuWTIL28eIYVK/a+/N5T4y/WwZ0LkWCHKB2B/xZIywWQpOCc/01EI:Ln28eISK/xrT4y/AM3ZZIyfCcM1z

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f8147d1dc455398049229c059c593014_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1040

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9bca280f02162f9643d8132b86aad1f7

    SHA1

    b0a779347d672880b52b8d7e6b8363c6d9a77422

    SHA256

    0339d6d64f567dd482fea97953686b5827f453fce66fc9a6dace3f41b14d4558

    SHA512

    6d06c2372f2e8d5839733a64c4e361cf8c715e4596ff3dbb2a339e6c2fdfbe4146f90f24b014e88bc00933beed5aa03f2745f40384af631d6438f8c003f2a27b

    Download Submit