Overview

overview

3

Static

static

3

005f4f546f...18.pdf

windows7-x64

1

005f4f546f...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 08:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    005f4f546ffe5692b1789af9d7efec4a_JaffaCakes118.pdf

  • Size

    49KB

  • MD5

    005f4f546ffe5692b1789af9d7efec4a

  • SHA1

    e4c79ff3bacfdb1e3177ad7375f4d7809d474efa

  • SHA256

    0bbe64f477b000ab1907559d2c653877e129441d715e0d13f1c65187755270e1

  • SHA512

    629a25226378ee3b45f546f87c2608e28032b8f36059de30c0ca07dbefbf3b0d09abe76ba55e77641d5056c4085cf75f61adca347b327d055277757ced604906

  • SSDEEP

    1536:IGFkpc5+SmGycYhfX6MN47blVZ8P27Wi40msRbQ:lFkpc0G3Y1X875zn40na

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\005f4f546ffe5692b1789af9d7efec4a_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2980

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0575730a6a92919b7ef43891114767db

    SHA1

    139a6fa7f46e0783ef0fa884ff896f6342d770db

    SHA256

    55d99554fb8be179415e74120ae464a496f7e7e603d1bb894d709f4cc943a8e0

    SHA512

    92fc43cf2b5d221ebfaafd0735e87c5e6b0dc5602877e917efe7abb717e0094427b1c06680c4600db27d5d1eec220293d40f64699789edb1bb374ed8f2a053c2

    Download Submit