Overview

overview

3

Static

static

3

1638829116...18.pdf

windows7-x64

1

1638829116...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05-05-2024 05:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    16388291163a09444be06a1027b9c953_JaffaCakes118.pdf

  • Size

    62KB

  • MD5

    16388291163a09444be06a1027b9c953

  • SHA1

    31fa3827228126a73219202bdc59a3267b5a8237

  • SHA256

    ed931ebaaa8950b9431f431f32b00b00e9e2e6ecda7dfcb5cde01f4de3874bda

  • SHA512

    a3a678b74c7cdf0b13cf93105c43ef47a2af06dcda0c76959a35fe627e9e67d3d1c0148c2207636d3907fe26ac0774edd805650c22a6df0f7be286df60ec3575

  • SSDEEP

    1536:UFfKoigPpwv8fiXxFyW72cdvm9rEhvv2bhtdu8dFFwjuhw9fDAKfYFn664sXFZmX:YfK8pSmsDxi8OFYHAjLd/y5AFA64ayse

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\16388291163a09444be06a1027b9c953_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2856

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    edb73b3eb31bce6a6804f97a896ea90e

    SHA1

    6a21bbf6302d4bd9f515565afbac00f5f1f1d669

    SHA256

    2d93121b5d0cc95dc77f992f7a88306aa9dcae4e2334e3a9bac15387348eb4b9

    SHA512

    f060aeeba11438812c9330cd67537cc824238c1847782b641e50f3286e6dd8119a5ea163424c8a2fa1b773bb278d481b513518718aed44b9da9204c72b34fda2

    Download Submit