Overview

overview

3

Static

static

3

039863dbb2...18.pdf

windows7-x64

1

039863dbb2...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    27-04-2024 20:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    039863dbb2f694a5924d921b625315a3_JaffaCakes118.pdf

  • Size

    40KB

  • MD5

    039863dbb2f694a5924d921b625315a3

  • SHA1

    6f49f6532ce5d3e3163b869acb2841180e250a22

  • SHA256

    da903ad640cca3b2d1709f7b5b694a7927e28f6e42b8f8c6f60192f801bd6fd7

  • SHA512

    b62ebaf37dd1092808384f1dbb6c605740ca5c18ed78493b1af4e14b556554d743b588870e2d7ad306c06c9eac35aaec71652cecc5b99a7a0fe8c76724cb62ad

  • SSDEEP

    768:lgGzpDHcQsv/o4Z8bYkbNO7lJfkYNDZylb/r8rzBFtLxdl73hQWeIeweFb7anIRE:2GFD6sYNolbCBbLxdBeWeIewg7aIRE

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\039863dbb2f694a5924d921b625315a3_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2968

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    94625adec34fbdb6b8c189142b2752f1

    SHA1

    c448d4e05cdd4a14974ad333c447c6ef40f033a3

    SHA256

    9ef0a50b54431f3e41d4cc9a0e5972ecb0c9bc9ca14dad766f49b53bae9dfde1

    SHA512

    37c5042e8ae3e0ada8a4c1bc173c668e7fcd2aa28cc51c76eb3f965516f7038f9391fa94c0821d038dec3a2b83613e469811a41176590f8f6803e251486d3f7d

    Download Submit