Overview

overview

3

Static

static

3

1145918af5...18.pdf

windows7-x64

1

1145918af5...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    04-05-2024 02:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1145918af5a6fe4eb55a976a65fcc878_JaffaCakes118.pdf

  • Size

    43KB

  • MD5

    1145918af5a6fe4eb55a976a65fcc878

  • SHA1

    ba125d7882563f53462c39d3bfc0cf36d2cf2858

  • SHA256

    b465e51115795d65338d4a2a7de321a8c5659d185f3e282104bde4e1b26f8c81

  • SHA512

    e49758de7e99913fd8b68439cdf880d57dbbfc1ae85c97c02ea8d604ab5577ad6688a80471bc58cf56a459fc34761fa963ce2f35eea467d17edf2baf5d220285

  • SSDEEP

    768:MFbgGzpDPNzf6IdG53a97NitL6Y+FPFrkOydVNkjmIOzKUWpZUx8w5y2gYJGma:LGF7Nt9Y3FkdOzgKx8wVP3a

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1145918af5a6fe4eb55a976a65fcc878_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3064

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ea92c617d03947b86500faa99274dacf

    SHA1

    0da76c9670b4269620015af7551398ce84eec57c

    SHA256

    81a0ca25f3facee102b2dc9239409569249890d7506f622c0c82bbf4b166e9af

    SHA512

    97a5bae8c7836d4d0a82255163700b3c6894c9ac33108741f5330f946cfdcc9e275c7f0d90098eed8d6276013e0318bc8b29ac658086e841cad6375502c47628

    Download Submit