Overview

overview

3

Static

static

3

295692f6db...18.pdf

windows7-x64

1

295692f6db...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    09-05-2024 09:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    295692f6dba9ec2f34d1b68d3dffc8c8_JaffaCakes118.pdf

  • Size

    43KB

  • MD5

    295692f6dba9ec2f34d1b68d3dffc8c8

  • SHA1

    7903d8e8fd0df27f3a458e92f5c3afd4b795b650

  • SHA256

    868655264f0f1e39f366a89a181809720401216766e8852958b26e602ac7ae2e

  • SHA512

    e487ab3aa19383ca2a848719b4a24011ec5d5589dad578d143d3a022ba84760ee5e14aa075ad7473b820bc7b854ed1ce8240bfeb599961f67f3c3c9222d04865

  • SSDEEP

    768:SXuMZmwgCLWarYE5HpxoRITbi3hiKbYc9/P10e0vR6t9iy3vAxrwFbIwsIX1PIrK:SXFZmGWSxjoRITbi3hiKbYM10es6t9i4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\295692f6dba9ec2f34d1b68d3dffc8c8_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1796

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5889292712914c058cb6fd7eecd88dd6

    SHA1

    ba4c5a80c9cc55046f44d884bd1b213264fb1312

    SHA256

    f83a795eebe9f7712409e9f6acbc715bb7af3a3df19be5a628a179455115794c

    SHA512

    b537dcff8c16903fc23e8d0c741996b5bf937b01110da2cae34468f4b6604b4b50878d8e31dadd594af21fac4d2780163669a2588eba4d1600828cdb0dfef7ce

    Download Submit