Overview

overview

4

Static

static

4

2a48558161...18.pdf

windows7-x64

1

2a48558161...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    09-05-2024 13:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2a48558161c1ae6c1c3749b544875a0f_JaffaCakes118.pdf

  • Size

    112KB

  • MD5

    2a48558161c1ae6c1c3749b544875a0f

  • SHA1

    da313983aea349d7cdafafe5fcb6385d1f80b65a

  • SHA256

    0319035d572a232c81af6febef812736231baf15fe91d3800f2b36f69d517551

  • SHA512

    c6bade54bd3e5feae8e98196668f812bc7863f5c577432abc472b9e0e9e80b7b6b60aef731d569dfceea168526197e0b40752a23b60069b3437b2f3852ed22b2

  • SSDEEP

    1536:9zU3PqFDPf0LJVal0nqgY0ZW3M8K5t/Wx043udAv4KmOVuqFTPIq3LLOtFy:VU/mPwYsYG8aw+w4XOVPFTgq3LLOtg

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2a48558161c1ae6c1c3749b544875a0f_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2116

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0739d45d3b2befd0df85ddc1d47e9e8c

    SHA1

    9a8e7b5fa96479de5526e09142904dd185009e47

    SHA256

    6a5c71b99993afc158b389621b31173c5d1be8934127d063040eaf8e18b1528f

    SHA512

    04c54e734086f4730429c005f473bd48f5a0db8080bd7f3282cdfb76eb06b3691280b0e6b50e114d4e3eca6056bb61d1a384790fa2373e968c1ff4d6324c06ce

    Download Submit