Overview

overview

3

Static

static

3

0072604aa1...18.pdf

windows7-x64

1

0072604aa1...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 09:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0072604aa14f3c1e4bcf599aefbdf524_JaffaCakes118.pdf

  • Size

    41KB

  • MD5

    0072604aa14f3c1e4bcf599aefbdf524

  • SHA1

    af1ee842626cc7aaa2930b6f88d161ae5bc4e59d

  • SHA256

    3e2b9040e0ff8a035662ab2d75baf3b90f52c08cdb1e8ab59dfee3ed11f13d6f

  • SHA512

    936c0053a43c5bf31354fcb2d338d838aaff482da7d6b108207c2c99ba94f1670faf5ceec1def9d2f0ca5984bc0a21f20e2fd0c3d25a8f37b48db2bd693a093d

  • SSDEEP

    768:2XgGzpDGpqehtlNMRT7ff4TkZvRyB2rrWYhiY0KkOpoTjtzSzsP7iCP2MvF+8WS8:bGF6pjwOB2rrWYZ0vOponZSzsD7P2UFo

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0072604aa14f3c1e4bcf599aefbdf524_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2972

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e29fbd587612a5e5cb1e8133f3eca412

    SHA1

    ac40d81e0efdc3c5e540c6d6444623eaa2837ed6

    SHA256

    ea9f6b5b0a26a8e39b2f419ef0cbedbb76296950766dd1df685d9da5d6a947bc

    SHA512

    f936cf82755e951d066c5f927cbd479f6d4d3e5858517ca8d1247efa0493090b0758c92717bf4129fbab42bf40a950f699412fd9dda39cf0a9ba0638c73faf04

    Download Submit