Overview

overview

3

Static

static

3

238b9514cb...18.pdf

windows7-x64

1

238b9514cb...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    08-05-2024 06:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    238b9514cb6c7f4fc5ac9e4a7190cfd5_JaffaCakes118.pdf

  • Size

    52KB

  • MD5

    238b9514cb6c7f4fc5ac9e4a7190cfd5

  • SHA1

    b8b4f2cc77741d0b370e3a78b376edc4bf8abdc0

  • SHA256

    3ced99fa100988b70f8950891a1fd7146602957f484ac43c416cd44cda67c2b3

  • SHA512

    12cc40e9d0f565e376c6550b137a870d1b5dd8652f917a649e06a03c7649fa37c042b2a479a6d3137a3639742bbb250c8be88c5ac2dee7d2d0226c280c945250

  • SSDEEP

    768:fgGzpDyBVksi8QRIMAvAE46tvhOPpSH2DGhEGly+q4SjxkZuDQYq23vHmuA/0j3t:oGFmooOh46avQ+q4S1k8DxNHqqLrF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\238b9514cb6c7f4fc5ac9e4a7190cfd5_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3000

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    520e31431463dc511e40243ba06f72be

    SHA1

    a556818bf8ccda69d4e8ee1209af0b68253c01c4

    SHA256

    9a32dd408237e174a4dcbe07a1f5124c80d9d6a4c23ed7d195134afa4b11da92

    SHA512

    eb8c24c86ade9f76400a8f64c2f67f221962f95f64575e8e2517d4b158ddc0ca80279792db179792cded786a5f2bfb23ea2f4839d30158709b221fac87602258

    Download Submit