Overview

overview

3

Static

static

3

fd35f36c52...18.pdf

windows7-x64

1

fd35f36c52...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    20-04-2024 17:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fd35f36c52b838ed3f1a7a6dc8cc180d_JaffaCakes118.pdf

  • Size

    89KB

  • MD5

    fd35f36c52b838ed3f1a7a6dc8cc180d

  • SHA1

    11424849a6dc6ac8deacb31191998d7f0e041ed7

  • SHA256

    66a0ab444ce6807b1e43892126af3b1ad41eba13c8e849caf88b98b60b84e77b

  • SHA512

    46a9db1afcec10048b0ff3313e6a32f1e8654cb55f1d161e6e9fd071999b14b44b237bae8f633fca67d67d82f1f2b98a6304e1fdd23a3f9b035719d0bd05f115

  • SSDEEP

    1536:GUcKt1sea6dzuHbJUodTf0/u9iC/I1UUEQLDOemHzaRptWe1gCCpYMCNWjpORQSb:bdJdWb3bCof/I1ULynqzaX6VpY1LRB

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fd35f36c52b838ed3f1a7a6dc8cc180d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1540

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5c6d871ca5e2ea90f76d18e6a1591d9e

    SHA1

    292bb8d2f29acaf09c9191a79a15b86dc105cfc1

    SHA256

    b551fd58eb808f4ac09f5cf691e6dbe3c6051bfcb711abfd806f37da84186a22

    SHA512

    4719bc43cbb02bd345ddcb9a6f24232ba79db7dc94ae98c65c05277c2a4f8a7bd93db38007bb276a0f46cc313d6cbb93f2915ba05bfef0c1a2f702dc7421c0f4

    Download Submit