Overview

overview

3

Static

static

3

080db51f1f...18.pdf

windows7-x64

1

080db51f1f...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    29-04-2024 16:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    080db51f1f653faf869d3d0eb50f7693_JaffaCakes118.pdf

  • Size

    188KB

  • MD5

    080db51f1f653faf869d3d0eb50f7693

  • SHA1

    ed75ec5dd6e8f87f12d6862062f0033a6515c808

  • SHA256

    ad5d524e0bc4d1681dbb4482300325cdc647058a82359afa5aeda0305c5a30d3

  • SHA512

    22c432cf5b320521baf133dea7c315d48d65a35fb4ff135ec4ce24e5604eff9e0b0663ddf98dd755c75c7862a4e84ceb15e60b00ffc508ff8ddebf951954fcfd

  • SSDEEP

    3072:X2irbxzGAFYDMxud7fKg3dXVmbOn5uQ6KjnH77Ojepl6SCU9HmZbHBmESF:X2MKlWQ7Sg3d4bORb7vrpJmZ4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\080db51f1f653faf869d3d0eb50f7693_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2064

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b5ae19a73b375ffddf9df7917ea5c8eb

    SHA1

    fab88664975bc7d3682a6b79967921950ad7f9cb

    SHA256

    f754284db6208376e316dcb642f33c9892807aa881bb0a46ebcfc231267d1c82

    SHA512

    776c766604a1b041370e037f39094fcfdbce3b027ab23d5503e1d7241e7ffd7e18b1d1a56a1e7a72e46315fc035d032febba00041b5ef6702f937059e97622a7

    Download Submit