Overview

overview

3

Static

static

3

f872b4fcfe...18.pdf

windows7-x64

1

f872b4fcfe...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18-04-2024 17:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f872b4fcfe5d618e8425faa2b5da4244_JaffaCakes118.pdf

  • Size

    34KB

  • MD5

    f872b4fcfe5d618e8425faa2b5da4244

  • SHA1

    30f6bdf170fbe233d7a645541a6fd4988fe9da65

  • SHA256

    191fc89b2dee288ae3ebc7e99bbff886896711d7ac60b25d64ecf1a016a57857

  • SHA512

    bd124f69cd1db7df64504d072cacaff3bbc1934a87291f802823bfaab4fdfea42b022c52c318ad2eebe2ff1835232d59b76f8497a041121de5cad1b4cffcd83d

  • SSDEEP

    384:qZkvR4XeYP4e2kQwSlKG+qSgiQ/aF77uW8+sK7lXH1uG6zmvXh++CUSc8qYYEawR:okvmP41pwKtTi9QavXhNJ8wzXsdFzL

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f872b4fcfe5d618e8425faa2b5da4244_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2160

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f8ee110390837ba8a9034f710e0445d6

    SHA1

    3a649121de16885a27dfa315326516f733d48a10

    SHA256

    98b002d277ebf8b5a173b557aaeeb8a8c68f124dcd594a0423b8925ff6a89dcf

    SHA512

    615edcf2da88801fffccbaaed8f8e73cc8d8e42bbb039aa2f556ab3d38b8d1abed1eba0ed3248924d45818beabe47bdd3bb51370b692805821b61ac9cd70a8f7

    Download Submit