Overview

overview

3

Static

static

3

0049568a00...18.pdf

windows7-x64

1

0049568a00...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 07:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0049568a001246e39b3ad990c8a41b41_JaffaCakes118.pdf

  • Size

    40KB

  • MD5

    0049568a001246e39b3ad990c8a41b41

  • SHA1

    80cf8d93778c66eb5e8cd19269c60fc6e6eb332e

  • SHA256

    29409ef013d089f66489a45950c5ef48c569e01364899a0e6d887b4605abf3af

  • SHA512

    d915394cde739a76f63c69809d83fa8bbbb2657e6f10e97bdce84bc584e86844d57f90d0a51e242f88d6f88f94217fca0d46c43b3c577cb38087e5223289209f

  • SSDEEP

    768:TgGzpDSSGRAZMIgo4jK5Yi0huqfF/nsOZ0xKz2+xdVIo5ukF79uQdBPq:sGFNGRAo3sOZ0oz2+xskF79zdBPq

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0049568a001246e39b3ad990c8a41b41_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2252

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2701459eb3ca9c62779a6b1afb65d3c4

    SHA1

    1bbd27992f066c57d7043e9704978d701ad81d87

    SHA256

    b4ced0d8375907bad643132c7ca3e3c113dd6def6a0bcfc8f580e45c9aabe16a

    SHA512

    df9299e3f49f2fa71f58f9b2369dd999aeaa4564c351744e8f54e5c00bad14df93604b96e0c981f8cf4b718a0cfe47c6877e9acf84f246051ae751a2631bbef3

    Download Submit