Overview

overview

3

Static

static

3

f93f5ad137...18.pdf

windows7-x64

1

f93f5ad137...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    19/04/2024, 01:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f93f5ad13796121227f0db0b7808e5c5_JaffaCakes118.pdf

  • Size

    84KB

  • MD5

    f93f5ad13796121227f0db0b7808e5c5

  • SHA1

    8777c3fd25821b611a96f00815a570c8c905a5b7

  • SHA256

    d13dcd5e9e7c79933ed62bd2723cca5c30998cda5f99b5fc4d4637350f62f0b8

  • SHA512

    3bd4acf59e67aa9cc7ef6fd5e37ccfb5ab2d8aec3d84411b7f42a68b6492567e68ba14dda20a1f77e83fe3bf1b5fce7abd89a5cd246976592a09a9aceefca735

  • SSDEEP

    1536:sRraPaP9SR6HeYsQsdPEJVSY73sBd5dZiwVAqpPz9WOpOwrKWDZsCNI:W91HDsQs2D73sBd5dZiwG+zawrlZs9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f93f5ad13796121227f0db0b7808e5c5_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2016

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3b284ee5158851a88c9368130de53c66

    SHA1

    b3179ee2a8f0cd9ebf162df9a9ef68c3f8a5b66f

    SHA256

    6ddebe35357842afadc644e91b2a829ac37ced0de50e9887173dd1cdd76f1b9e

    SHA512

    ce66c68374f36db8d14b8220451962689a492ebce4fb7a23ae8373a92cff003a9220ddb131a3e1f446fb0bb31ac3d7bae0af18fcfdc33540377f97ed166f5344

    Download Submit