Overview

overview

3

Static

static

3

04798d4099...18.pdf

windows7-x64

1

04798d4099...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28-04-2024 05:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    04798d4099d08a35ccaa64f80e785e6b_JaffaCakes118.pdf

  • Size

    39KB

  • MD5

    04798d4099d08a35ccaa64f80e785e6b

  • SHA1

    5472a0acb6a8bef1bf64d51d82e91e4e13285e5a

  • SHA256

    9feb6b2af1e658d835199ca38b4aa8426f8183d95b5bd645751a52d71f2c5265

  • SHA512

    e6d9063a728cc236b4866a1785395997a1be92bdb996609a9aa3a667034de1b589c24e707360b64db35abb6847647a8e67eac6181b2c6af288fe297ba68e53cd

  • SSDEEP

    768:25gGzpD1pNM8ogOzfyirxRifBzT0yTB5eg3J8CRttIis/ciagQa6XE:hGF5pNnoVzfcttfzPRttIimraha6XE

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\04798d4099d08a35ccaa64f80e785e6b_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2000

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b2883d0fccbac3f1af596facf21b390e

    SHA1

    8a154e88c283dd5990a711ede65564f1ff7fae05

    SHA256

    e4b360c5baf6ad3652ddfb65bc897fe50535fb6654207965a9b42bc8d7d39a9e

    SHA512

    dbbfe8fc829718a85130473aaa4c6dab1542f5a292459d328de42a3d569fce73c20e238904687da1aaa3badc1e4300b002572607b57ee32379dc1743861d1f2f

    Download Submit