Overview

overview

3

Static

static

3

005e211b15...18.pdf

windows7-x64

1

005e211b15...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 08:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    005e211b15d28b8e95a0f1a497116c21_JaffaCakes118.pdf

  • Size

    52KB

  • MD5

    005e211b15d28b8e95a0f1a497116c21

  • SHA1

    d4836358255ba855bb0182b6f928b158434cae53

  • SHA256

    4cd40fdfb47e38cf8c592ea86522c96fc4ef3a1b23b1e2206ae14338e2d23807

  • SHA512

    589ecb7533aa136b368d3049fd724b05a8dcfed313eea35dfdc31ab50bd1bcc9822873aa862845620b90e5e76337b1a9fc90ec56142cf913ec47284d2f96d3f2

  • SSDEEP

    768:sgGzpDyBVksi8v7GIlA9nc8oqq+/+4Ayb/N/ifddT1vzkJIVnNM6HYLVOz/R1U+1:pGFmKIlA68s+zAybFKXz/M+O4mkR

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\005e211b15d28b8e95a0f1a497116c21_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1500

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2a194bcd3cfdd16e40566fa62ade028a

    SHA1

    ea1c14e402682b293f220c080b03edc4b0be95b2

    SHA256

    f3a82510de8a8d5fb45466b987c8b1aa78a16d2a84994822a3409f58bf91cc6f

    SHA512

    caa2087aa586c292dc09af8b5ed3d1ff3d2db70068a80cdb14fc6e88786e7b2b32ab5e637c6662bb0bb3ac1248dbf87ab680f41905bcc01b9cfb09adee56cc3f

    Download Submit