Overview

overview

3

Static

static

3

116308e33a...18.pdf

windows7-x64

1

116308e33a...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    04/05/2024, 03:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    116308e33a093311164269e65f2feee0_JaffaCakes118.pdf

  • Size

    45KB

  • MD5

    116308e33a093311164269e65f2feee0

  • SHA1

    cf112a7c8ce24c1a157fe73be9b002fdd59dc0e6

  • SHA256

    dec5aebe857d6791a636e3fcea5e713be0bfce12518ba748d0e3ec3e92cc26e4

  • SHA512

    53917881d003aa4e7a2dcd10cd47d9c5bd92982406961775ee8510d298f0306d3c5520388f429533bf6c513837df38623128ef3aa834bb697660e9ca74d03f7e

  • SSDEEP

    768:ugGzpDRppN2ZZ0O1dxjsHTqrLMoASdLIGXmdSvipF8fiu6UYvWxWwoxjP77KSDsx:LGFVpqLMohI4mdoipfu6UaWxrYPvKSYx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\116308e33a093311164269e65f2feee0_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2276

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ee9cc3c26b25a60f15726938f5e98b85

    SHA1

    fbf6ff0e22f1099ab75e30b4ff15ef4b73f31163

    SHA256

    c906334c9eba8e2abe1094fc7a660f65824c42869c0771779be69d2672c77763

    SHA512

    f23393da2a32043d358dd4c20fe96f3b4f11ec596687d4c671f7ee1e72940d7679adfe2455c1169abbebb8de208ce735415e25ecd6686bd031d4e28b5fbf9462

    Download Submit