Overview

overview

3

Static

static

3

f850ae3c2f...18.pdf

windows7-x64

1

f850ae3c2f...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18/04/2024, 15:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f850ae3c2fcfed5e80678d7210411629_JaffaCakes118.pdf

  • Size

    83KB

  • MD5

    f850ae3c2fcfed5e80678d7210411629

  • SHA1

    2be2122c3208356e77f459dfaade2807963d763d

  • SHA256

    45559fb5a95725d9401af57577d37b61e9ad2c0fb1f09f2313915be8746f31b8

  • SHA512

    7e507b0f41e118fcc77b8f123cde5946f24085e146f99825e3d3c69b4ac3f569b58b6d3be45e88886a37d95abd2991054ab200d6c44cb5ce84e5f19b5405edec

  • SSDEEP

    1536:VbkviMC95X6n2rB5H1AJ4FslPehQqOuQ9FeBka1Ui9PpnUlPDEgW:N4iMxSvH1AeFsYOXXeBkarhnyC

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f850ae3c2fcfed5e80678d7210411629_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2300

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1085da4dca7d59a19d6466fad17ce908

    SHA1

    7a86dd4a876c957ab9327d48778b5ad365d46c3f

    SHA256

    5d54882176563bb9b8620c7215ce9df204bfd544dcab41d5152af4a890383e5d

    SHA512

    36fa121f3b50fb89218e5d00588d20878b752d1454149e2e78ae896f6561dee4e1186a26b4af6df3be1f5d58806e7c27164649d18effaeecca1c4ba25e9613c3

    Download Submit