Overview

overview

3

Static

static

3

00583c1d4a...18.pdf

windows7-x64

1

00583c1d4a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 08:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00583c1d4a5c10fb255368e64016de62_JaffaCakes118.pdf

  • Size

    33KB

  • MD5

    00583c1d4a5c10fb255368e64016de62

  • SHA1

    619c330bac6b1a2ff61a9da8f92848d2d442b628

  • SHA256

    a0ef8c8eb8d9c625e4f9b4d1bac08163d352292c735b428d8a4bcb784136bc10

  • SHA512

    a2a4d40ec84262e0bbe3c45723ff5e0b24931b5525f1416a14a6f027b83115f4a5f9e3f7a0827a9d4f7ae02baf6a09b363807729aac6d5ba386b85212cbcefc2

  • SSDEEP

    768:zgGzpD1pnToX9uLN21E5ENwlqksi9U0NWJSMpBu9+8hGLlLfGBU/:MGFZpBqklU0ogMpT8MVfGBU/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\00583c1d4a5c10fb255368e64016de62_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3028

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b62e99e18810c1429c6f20902405d250

    SHA1

    d163acffcbbdfe9fc0fa9a4cc9534099b33a694f

    SHA256

    09e984f232b831ff08dafbc5576a19f4e6ffd00d1dd4f78ffa58a25dbffea3ff

    SHA512

    4423344a90e37d557b718f48e3a1530dd859a0b2209ac2cc033335afe4a60bf95c6658a35731d68350eb8ab94a2d94458a88d563fce6a8a12b7388d0e613c02f

    Download Submit