Overview

overview

3

Static

static

3

007fc45965...18.pdf

windows7-x64

1

007fc45965...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 09:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    007fc45965529bcab208aa51d2d437ed_JaffaCakes118.pdf

  • Size

    38KB

  • MD5

    007fc45965529bcab208aa51d2d437ed

  • SHA1

    8f5c4ba2c37385b60e5a663614531805b4dc3d6a

  • SHA256

    c280ef7e0997c38f6a829176d0fb330da537c90944ea189f7349a3299ccda249

  • SHA512

    72103f0066d6e90252c67b0ecefd55a68874f8f6e9f106935a1b013db7c6b63496bb842418dfde88dd13c9c97701f43e526add925a46f5c4aafcb359ed42667b

  • SSDEEP

    768:FXuMZmwgCLWarWE5HpxT+SsBOVv7oUYvEyCuQdYzQXceGSRB+UeX0GCerZ4:FXFZmGWSHjqSsBOVv7oUYvEyCuQdYwc0

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\007fc45965529bcab208aa51d2d437ed_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1948

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d1ca7b5902779359602934a933cc03d8

    SHA1

    bf4fccc05cd60bcedf2c0dac29d5c030671e119f

    SHA256

    5f980360236d0e73ab577257a34cf89840ba476b157b16a36e6cf3ecccd9ed96

    SHA512

    5d2f3bcddb1f42165cfca074087f9520053e6f4372887b3ac5bc69f6ffddcc39a9cc6f85854dd2818530dddb6bbb210c2feaf2b1c61788c4bd33596de4e1decf

    Download Submit