Overview

overview

3

Static

static

3

31725fa763...18.pdf

windows7-x64

1

31725fa763...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    10/05/2024, 22:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    31725fa763d3bbfb132f00659f006707_JaffaCakes118.pdf

  • Size

    35KB

  • MD5

    31725fa763d3bbfb132f00659f006707

  • SHA1

    0799fdf53a7c9eaf8f7128b165fcf4541fa2f130

  • SHA256

    9e0887cb807fd0e4fa93de19d350fdc10efccc207bf7e1228ad32404025cca56

  • SHA512

    01ce4290b8ff6846c2b6a0396af6d00273a62d8b068cc6dc46040b1552722d66ab9d724f5a2381c5b8c24e11cc5370311923c370a10616f8e811ce379b689256

  • SSDEEP

    768:XX2Y88frDzKuZo4bRfltq+R2WrlEb7j4Kd:XX2YfXzKuZvysKd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\31725fa763d3bbfb132f00659f006707_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1808

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    acba5eb9f812730c15353ef2d500f3ee

    SHA1

    7eb6dd5eecf77672d27625ba157dff2327816bbe

    SHA256

    645dd5055047426a498a771feaff426f4d46ff24f00a8e2eecb2e91955026138

    SHA512

    f687dfda7fb52b19a14421bf70f552a7c0cea6b202b91c31061277ea89c849c6297a40441aec34e8c25cbe2f2af1a8221207112ad28e44a5576abe4115ebed42

    Download Submit