Overview

overview

3

Static

static

3

fdb230040d...18.pdf

windows7-x64

1

fdb230040d...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    20/04/2024, 21:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fdb230040d42360a3f830055d2cd5f4f_JaffaCakes118.pdf

  • Size

    91KB

  • MD5

    fdb230040d42360a3f830055d2cd5f4f

  • SHA1

    46a2a5e6beb7f1ad8ac3a7fb0505b7b5828f3948

  • SHA256

    b0da1374fae2113ba2d1152824c4383469dabd0bddbb9f5b595354d0d2363ffa

  • SHA512

    70c7953fd1d151c1b140cfb071a3487ab57255dfaf4679eff05a0acb8eedcbd04c72f00ee73a7442b574768e69d171d620f5d232d7d60ff5f792e76caf49f6b7

  • SSDEEP

    1536:uUP0svsq2lHv0fN2LfC2W+OXfOOdHJrqryIkJW+cOTY2H/9NNbBolmzaW8pO7px1:hMsvsdl8fN2L9W+forqryIkdcOc+/9tL

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fdb230040d42360a3f830055d2cd5f4f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1136

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    82c6a2a0a136c8c0670734db1012b51c

    SHA1

    be77539ee6de26e080ffdfcfff7bd65d5c724e5f

    SHA256

    f8b548cd3b4e32b9a4220034d6e7aaad1af2fcf3d43b27d93d81e1b4383655cc

    SHA512

    dda59f52d31d6bc86085b30d3a9ddce9d210586d031a4fd83f6955a61228f891faf345430358f82fe09ea588659a5837813e7575a3a46c0497b9cea696047b0f

    Download Submit