Overview

overview

6

Static

static

6

f836e99253...18.pdf

windows7-x64

1

f836e99253...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    18-04-2024 14:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f836e99253fcf332ab805d9d711d0fef_JaffaCakes118.pdf

  • Size

    70KB

  • MD5

    f836e99253fcf332ab805d9d711d0fef

  • SHA1

    15a86b71edc6c6f7058fd27f66e437e7e04f4b3a

  • SHA256

    0b56b15177383cac3b7e2f4347650cfe960b29a49dd53610484e182d0f121bf9

  • SHA512

    1ee8000e18567bab49f440c18934cafad1fb5064c4a5fdeba9353f7b114863ffe8bec81dd4fae8a74834fd774d550a4071952eddc2d4f6936b5b9bce5835e672

  • SSDEEP

    1536:+JRMatnvDTbEo+7qU5sZCjQh/xVCvwQpchOl3p5:2RjVDE970aQlzszZb5

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f836e99253fcf332ab805d9d711d0fef_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2184

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    abfc47aae93fdc1bde2cf2ddb480d352

    SHA1

    7f2c0fb6164a640c3cf32db80592e71aff802107

    SHA256

    f3345ef60ef0389d2227c240c76373efef4d2e50537d0af75ab14520d9d74132

    SHA512

    258129e163eb1b58e41320ac6060dcb28206e4659092d87aabcab61a29a134b887669b7f2379183e0d49e19fc87e9135198803aa3f38878b1fd6293b82149447

    Download Submit