Overview

overview

3

Static

static

3

0057687487...18.pdf

windows7-x64

1

0057687487...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 08:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    005768748768e0d7264e832a8dd853da_JaffaCakes118.pdf

  • Size

    39KB

  • MD5

    005768748768e0d7264e832a8dd853da

  • SHA1

    034bb46c712a1c2915345919a948df7a18b8db96

  • SHA256

    c701bb4c368e9e9f6846d523577fda110832c28f9a157c37aacf90f579d49866

  • SHA512

    cf340781aee695d73a5aebb4cf430e73391338812f3238cdaee85026bb94ec4777ad3fd1f8fbefcdd4ce134bff9b5cf082907e960a2b955f4bab845876590236

  • SSDEEP

    768:hGgML3ywwiFJwDyR+oZ/CVqfCeJNEYV3Or6T7/Vl05lTIUh/9BBRiXOPCHkey839:hGz7ywwiHpR5/HfzJNEYV3W6T7/Vlil6

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\005768748768e0d7264e832a8dd853da_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1928

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    af993a129ecb5b5c431ee5f528f04d5b

    SHA1

    c03531e4a243d67f45665ed46e39b71fea5b391e

    SHA256

    01845d969c58d252b83e99d5d7ee1520d790f077832ef59467644a1640b7cbc6

    SHA512

    40a1a8baf18ee2a498e1f62fdc836faa10fd11dfabe08d6971fe150c0e2af7767651c449b54a6b6d05119d064ad0fb751d9e57fffaffa76e10dd012794cab9f0

    Download Submit