Overview

overview

3

Static

static

3

00889b5dd6...18.pdf

windows7-x64

1

00889b5dd6...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 10:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00889b5dd6b4ad9984555576c07c05b1_JaffaCakes118.pdf

  • Size

    36KB

  • MD5

    00889b5dd6b4ad9984555576c07c05b1

  • SHA1

    34e3a601c8e07406978a19fb016c8b6d2c479448

  • SHA256

    ff0d7ef5bc2d32fea6d891b7e61c204666ff1d92541a72799823b38f4b22e3c0

  • SHA512

    d05855cada8b417c2285c971735d6407ba1874ad2e86154503d0ada1750234fc526df9c7eb678bcb0db966ef9b54342a3287915391c42fcbf607531e3625c3cd

  • SSDEEP

    768:1XuMZmwgCLWarWWKzlDBTiSft7nx14Lku9JVnFjWTyS0G37G3w/4L:1XFZmGWSWWKzlDBTiit7nx1Y/XjWTDKj

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\00889b5dd6b4ad9984555576c07c05b1_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2244

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    fe381aaa48729971ef9c0611f6445592

    SHA1

    6e627113c5ee5d130b9e03f08851cbc143e3479e

    SHA256

    6f6b482722351c3b2a26ede73e07d297e4effd24d2b44cc4387e05f27883bc13

    SHA512

    f9b3c136f17f4449e285200187d077fdd379ac4479a810181fc02a8b7104e5df3171b9d4c6197623d688e4bc8cc7b7b99b15de4daa87f47e3423ae2dae24c8ba

    Download Submit