Overview

overview

3

Static

static

3

20d73cf7d2...18.pdf

windows7-x64

1

20d73cf7d2...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    07-05-2024 14:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    20d73cf7d24dcbb6b41fa2908f42031b_JaffaCakes118.pdf

  • Size

    46KB

  • MD5

    20d73cf7d24dcbb6b41fa2908f42031b

  • SHA1

    0794472582eb4da0c992cb2f0abaf8722cb95d1f

  • SHA256

    8271b451c730808c97175b9591baf10d1d14d3d471f5f55acb42816427deeaea

  • SHA512

    d405a72b8b9f043267a0b3f330ea0f7d80394e729e47a3d47b0fa0c6493544c6043b8a1d8a334aed25ad939693690213da7119824c6d02081ed4310fd7463156

  • SSDEEP

    768:bXuMZmwgCLWarLXHCDYvVswCUuOYI/6wfu2RpZUjDKnbPTN0teh4LDvIro6IBv9l:bXFZmGWSzeYvi/OYI/68u2RpZUjDkbrc

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\20d73cf7d24dcbb6b41fa2908f42031b_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1984

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    98f6ca2baa57076ba92863ca4412339e

    SHA1

    ebd94b37e32efa09f929ac340fe499cadf03ecb1

    SHA256

    b17343dd9812eebdd32085ecafc5b6c762e729b81068a7a4e0762680f5d90538

    SHA512

    49038b6050582c457c2d32072b4e7f92fc5512479359d7412d7ffd1c8210e9931848d8584f41af0c44b434b21bff9c5ede26c0ad57f79d7bd6de48c414085b5b

    Download Submit