Overview

overview

3

Static

static

3

04e8cc771f...18.pdf

windows7-x64

1

04e8cc771f...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    28-04-2024 09:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    04e8cc771fe9124ee4b5c6430d2bd437_JaffaCakes118.pdf

  • Size

    47KB

  • MD5

    04e8cc771fe9124ee4b5c6430d2bd437

  • SHA1

    756e9868993eece0a90a67f98c0fd62f46a43b12

  • SHA256

    f16fac60bbd698c329a5be288737b1cae22cb2ecbc8e734a4df11e4235d104a4

  • SHA512

    79c58a8d24eed3ade3c9d3a1530e906fa00dd5451556704f7e649f68e7c80d0cd42a76f78345b73a72734984af4b389970c712e6e5079d11582930ad9ffbb3b8

  • SSDEEP

    768:5gGzpDQpyOTkP2gWhscK2NcI1FFq8QFSU2QkHdgtcKlYXSBGUReoXEAdkJc7Y1E2:6GFEpzTPh8gcyFgBSQGAiJusEbi

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\04e8cc771fe9124ee4b5c6430d2bd437_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2860

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c7a60b6ad3d561b9cccf9ad45d00fdd9

    SHA1

    743cb9b67ad3b5cae0f03cc2917b125635226f43

    SHA256

    b51f94aa4934da56b9264f573c8ebcf1f0091ba95dfe265c268f55842920921e

    SHA512

    7c887212895299c1ed0c41be20b8130abc2d715a7aef6f84f2a2dafa69bac2c9a6f125e14d9a79cbd6e41c00fb60fe31fcd0bf91f2c3e8cbb2d900ec09921ac4

    Download Submit