Overview

overview

3

Static

static

3

0086b8592b...18.pdf

windows7-x64

1

0086b8592b...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 10:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0086b8592be84c9dc73fa0d974138124_JaffaCakes118.pdf

  • Size

    44KB

  • MD5

    0086b8592be84c9dc73fa0d974138124

  • SHA1

    7ed3165522785edd4ac13460182bd6698afab862

  • SHA256

    411def0e0d4d9943b386ae19d6fb4919b83107850cf61e5f92f85f359393821e

  • SHA512

    2d23358de807f914ffecd044e4ae4d5b0d1e0e41a52fe9ccde21b1eb93e79abb3ce3993db4f6efd5db8b6f41bb9b2175fdff6619aa29903b180ceb72693d2831

  • SSDEEP

    768:zF0LcR/0bn/J1k9BK8qoqthco5gFzU+8Xd0N1vXPR0cn9OUT4nwAUIKumdPiWSEB:zOoR/0DR1k9BK8qoqthco5gFzU+8XeNl

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0086b8592be84c9dc73fa0d974138124_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2240

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    291cfb2c927c0ca7fad856c48f95d109

    SHA1

    6da17f2c3bd1ad1362847daa977b993e4035d883

    SHA256

    9ee45ac16dd9ddb4b442f8b2f00115b5fe2068918eddd4c15bc5e8d74a7ed616

    SHA512

    d90a19049a426ef2e53bb4069ae34617180e8ec2a23b044db7b052de11b8b8d300c24132899a7a18c25bfd5fb4396703514f8910f67075ed69b4fd3df39e4725

    Download Submit