Overview

overview

3

Static

static

3

1559dd2541...18.pdf

windows7-x64

1

1559dd2541...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05-05-2024 01:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1559dd2541710bd75152aa7bdee17365_JaffaCakes118.pdf

  • Size

    38KB

  • MD5

    1559dd2541710bd75152aa7bdee17365

  • SHA1

    2f27b1fce63700e0ad82e41458bc0e34f7953de7

  • SHA256

    560f45f6d6a457dca0f884a2f566db1baaedfc305e767c478d061b0e5ee6630e

  • SHA512

    c202450e419e4672d9a487b5efa49db35bec0cee63094aa58cfaa0adff0488f20c5b17ee1b4204e1f84b107b407b4cb4762e970b94b379c4721e18968fbcd4bc

  • SSDEEP

    768:lWTXuMZmwgCLWarC5U4Y6+nR4BYlGXKtVMpUx98JatVix:AXFZmGWSAHteRkaGXjk98J+Vix

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1559dd2541710bd75152aa7bdee17365_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2936

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c3fb60706fc77872df505f57ef641827

    SHA1

    320dae05cba8be85f6fbe4108476c4d4971d8c76

    SHA256

    5a0c36d39baafd4b031ab28e3b3bbc69f961427931cc6e69bd7a49d99c80898c

    SHA512

    187d0a02bf4743351e4c1e67cf9dd785ffbd8e61bdc14e255eeed5d760857620a320129c6691d3936a0b357d8313a5070464ae4e40f975f7cc2cdcb2eb850da5

    Download Submit