Overview

overview

3

Static

static

3

31681d18d0...18.pdf

windows7-x64

1

31681d18d0...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    10/05/2024, 22:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    31681d18d0549bdda0a7d57bc190de36_JaffaCakes118.pdf

  • Size

    48KB

  • MD5

    31681d18d0549bdda0a7d57bc190de36

  • SHA1

    879a039e070687102ea22de4acb7bdfae44d1503

  • SHA256

    4be64256e48d7387fd62d1d59d1dfe2f66b7bc12acc032b6b182c24be81d24aa

  • SHA512

    ed431235a180028b87ebb01bc3872e239b66e3aee6c10845e7d4ee6edd0535181053c8dbd50a05fc04b70c908730529a221c2be3c492f88848f738767a7a2189

  • SSDEEP

    768:XgGzpDyBVksi87+6CtgPMC8I9xBcL3MuAUxv5jSGFzw1dOpM/dNf1XNZ:wGFmDdsxZFz+Ekf1XNZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\31681d18d0549bdda0a7d57bc190de36_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1876

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ba0e22065cb75f237cea9038387b0c14

    SHA1

    81fe759c02995c76d058a17a802b1d22fe4adbaa

    SHA256

    94de75b875aa6301758dcf1437bfa1580213102bfab705429662b8e73b9e1ca4

    SHA512

    824121305b7cdc9eec4d87ddffac04033a801159645f9f08267725a044401c7b1c80002f02ec8055163a46483dcc0128697f1576efe292157eb1a3863a3a097d

    Download Submit