Overview

overview

3

Static

static

3

1633d729cc...18.pdf

windows7-x64

1

1633d729cc...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05-05-2024 05:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1633d729ccc790cf09010451b8e1d670_JaffaCakes118.pdf

  • Size

    39KB

  • MD5

    1633d729ccc790cf09010451b8e1d670

  • SHA1

    5ceda3a5d92aea16d9bd1335b475ae9c5b860e4d

  • SHA256

    6f57cf6a4dcfade85828d34eb0dfa2d8c9c978928336972f38dc2e268829e9b6

  • SHA512

    bc0621e5d62d405a2d8d90cef8b1f7073c3f0ae17f695fb25df10f33ccfe722a5bcddf460d4780bb7dec155e0b40c48138ef54267b1cab329479624832cccf79

  • SSDEEP

    768:7gGzpDZp6jOvNU0HIuSLnB/MDCp8DfIK+50/EsFgxi+L298n6AIDC2qfGHgS6VlQ:EGFtp7T3+L29dAn2GGANVlQ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1633d729ccc790cf09010451b8e1d670_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2256

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5a123f8790e3e1efa29beb5cfe3d2123

    SHA1

    31091bf41373aef85e39dacf046010164798d7c1

    SHA256

    c455813c39965fb166c2d59a7fe9918c658949f1550c2375e7f178f3b0c613c9

    SHA512

    feac244f1f69a94dcbe39c17be8a684a340d921b23b563f43e6be50f3ed232832b7a86ff2d1812c9c19738c1568ff5c0007243c370271b717bbe9890e503f036

    Download Submit