Overview

overview

3

Static

static

3

20fb06c3cb...18.pdf

windows7-x64

1

20fb06c3cb...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07/05/2024, 15:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    20fb06c3cbc71f906ae418a7f5a107eb_JaffaCakes118.pdf

  • Size

    19KB

  • MD5

    20fb06c3cbc71f906ae418a7f5a107eb

  • SHA1

    8e82093657b4bf345aa5a114a380925e3125423c

  • SHA256

    f7f4a28607a5a9783a95b021920de5ce30496a7ed5477157bd884e9e8d586480

  • SHA512

    219b60177863322991235c2cf4a6b1c2788b7e1c153797cddd4a839fd11ab8145474daf38c6ae49fb98dfd1e46e14bf595d0d424deaec71cccabc442dd6a53eb

  • SSDEEP

    384:VzNT0D17+3z1RsQV2icWkqcWNEhchbSEchC0/xA/oLGlPf8d58/loxaKdUUap57r:VzNT0D03z1mBQRZWxCoWMdi9oZdUH5Wa

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\20fb06c3cbc71f906ae418a7f5a107eb_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2184

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9b2d87cf05979b8e6dc14b7fd52b2c62

    SHA1

    255a47ccea5eb0c111bbfce308e1df2cf7bff368

    SHA256

    f8703eb75096be725e0036aa6c29ff17b99ac6357a3ded6fdcf2d2cf9a9eb528

    SHA512

    6e66bb7e4d946dee928a5a8a360b61bce59d5f9809fb93b02bae40425d012334ee513c593abb910bd299f1281a666fe1363d00c7a9760a6d44638a7bfa67394c

    Download Submit